Lucene search
Steven Seeley of Source InciteZDI-23-920HistoryJul 13, 2023 - 12:00 a.m.
NETGEAR ProSAFE Network Management System MyHandlerInterceptor Authentication Bypass Vulnerability
2023-07-1300:00:00
Steven Seeley of Source Incite
www.zerodayinitiative.com
20
netgear prosafe
nms
authentication bypass
vulnerability
myhandlerinterceptor
remote attackers
improper implementation
system security
0.0005 Low
EPSS
Percentile
17.4%
This vulnerability allows remote attackers to bypass authentication on affected installations of NETGEAR ProSAFE Network Management System. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MyHandlerInterceptor class. The issue results from improper implementation of the authentication mechanism. An attacker can leverage this vulnerability to bypass authentication on the system.
Related
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-38096
2024-05-03 02:15:52
nessus
nessus
cve
cve
CVE-2023-38096
2024-05-03 02:15:52
metasploit
metasploit
NETGEAR ProSafe Network Management System 300 Arbitrary File Upload
2016-02-03 23:54:16
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-09-01 16:30:00