CRITICAL🇵🇱 Wersja polska

CVE-2023-50089

CVSS 9.8v3.1pub. 2023-12-15upd. 2024-11-21

A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.

🤖 AI Analysis
How it works

The vulnerability (CWE-77) consists of insufficient input data validation in the SOAP authentication handling process carried out via the HTTP protocol. After successful authentication through the SOAP interface, an attacker can inject malicious system commands that are executed directly by the device's operating system. The lack of proper data sanitization at the SOAP request processing stage allows embedding a payload with arbitrary commands.

Impact

An attacker who carries out the attack gains the ability to execute arbitrary commands on the device with potentially high privileges, which may lead to complete takeover of the router, disclosure of sensitive configuration data, and disruption of network availability.

Mitigation & patch

Patches available from the manufacturer should be applied in accordance with references (https://www.netgear.com/about/security/). Until updates are implemented, it is recommended to restrict access to the router's administrative interface exclusively from trusted local networks and to disable remote device management.

Who is affected

NETGEAR WNR2000v4 with firmware version 1.0.0.70

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Wnr2000

    HW
    Netgear
    v4
  • Netgear Wnr2000 Firmware

    OS
    Netgear
    1.0.0.70
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2017-6862CRITICAL9.8⚠ KEVten sam produkt

NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0...

CVE-2018-21153CRITICAL9.8ten sam produkt

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 b...

CVE-2022-46423HIGH8.1ten sam produkt

An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker...

CVE-2018-21181HIGH7.2ten sam produkt

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D...

CVE-2016-11059HIGH7.5ten sam produkt

Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before...