Rax30 Firmware Security Vulnerabilities and Issues — Rax30 Firmware CVE List

Lucene search

NetgearRax30 Firmware

16 matches found

CVE•added 2024/05/03 2:15 a.m.•81 views

CVE-2023-27357

NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific fl...

6.5CVSS6.2AI score0.00149EPSS

CVE•added 2024/05/03 2:15 a.m.•72 views

CVE-2023-27358

NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists wit...

8.8CVSS9AI score0.00762EPSS

CVE•added 2024/05/03 3:15 a.m.•72 views

CVE-2023-40480

NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists ...

8.8CVSS9.1AI score0.01579EPSS

CVE•added 2024/05/03 2:15 a.m.•53 views

CVE-2023-27368

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific f...

8.8CVSS9.1AI score0.00039EPSS

CVE•added 2024/05/03 2:15 a.m.•50 views

CVE-2023-27356

NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authenticat...

8CVSS7.3AI score0.00219EPSS

CVE•added 2024/05/03 2:15 a.m.•50 views

CVE-2023-27370

NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, th...

5.7CVSS5.2AI score0.00013EPSS

CVE•added 2024/05/03 2:15 a.m.•48 views

CVE-2023-27361

NETGEAR RAX30 rex_cgi JSON Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is required to exploit this vulnerability. The specif...

8CVSS7.2AI score0.03983EPSS

CVE•added 2024/05/03 2:15 a.m.•45 views

CVE-2023-27360

NETGEAR RAX30 lighttpd Misconfiguration Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability. The specific flaw exists within the c...

8.8CVSS8AI score0.00529EPSS

CVE•added 2024/05/03 2:15 a.m.•41 views

CVE-2023-27367

NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authenti...

8CVSS8.4AI score0.00129EPSS

CVE•added 2024/05/03 3:15 a.m.•41 views

CVE-2023-40479

NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within ...

8.8CVSS9.1AI score0.01579EPSS

CVE•added 2024/05/03 2:15 a.m.•38 views

CVE-2023-27369

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS9.1AI score0.00039EPSS

CVE•added 2024/05/03 2:15 a.m.•38 views

CVE-2023-35722

8.8CVSS9.1AI score0.00819EPSS

CVE•added 2024/05/03 2:15 a.m.•37 views

CVE-2023-34283

NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability. This vulnerability allows physically present attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw e...

4.6CVSS4.2AI score0.00366EPSS

CVE•added 2024/05/03 2:15 a.m.•35 views

CVE-2023-34284

NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists w...

6.3CVSS6.5AI score0.00031EPSS

CVE•added 2024/05/03 2:15 a.m.•34 views

CVE-2023-34285

NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The spe...

8.8CVSS9AI score0.00805EPSS

CVE•added 2024/05/03 3:15 a.m.•32 views

CVE-2023-40478

NETGEAR RAX30 Telnet CLI passwd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the ...

8CVSS8.3AI score0.00284EPSS