Sign-up

ID

VAR-202303-0775


CVE

CVE-2023-27850


TITLE

of netgear  RAX30  Firmware vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2023-005145

DESCRIPTION

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to access arbitrary files on the device. of netgear RAX30 There are unspecified vulnerabilities in the firmware.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2023-27850 // JVNDB: JVNDB-2023-005145 // VULMON: CVE-2023-27850

AFFECTED PRODUCTS

vendor:netgearmodel:rax30scope:ltversion:1.0.10.94

Trust: 1.0

vendor:ネットギアmodel:rax30scope:eqversion: -

Trust: 0.8

vendor:ネットギアmodel:rax30scope:eqversion:rax30 firmware 1.0.10.94

Trust: 0.8

vendor:ネットギアmodel:rax30scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2023-005145 // NVD: CVE-2023-27850

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2023-27850
value: MEDIUM

Trust: 1.0

NVD: CVE-2023-27850
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202303-822
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2023-27850
baseSeverity: MEDIUM
baseScore: 6.8
vectorString: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: PHYSICAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.9
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: CVE-2023-27850
baseSeverity: MEDIUM
baseScore: 6.8
vectorString: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: PHYSICAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2023-005145 // CNNVD: CNNVD-202303-822 // NVD: CVE-2023-27850

PROBLEMTYPE DATA

problemtype:CWE-59

Trust: 1.0

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:Lack of information (CWE-noinfo) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2023-005145 // NVD: CVE-2023-27850

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202303-822

PATCH

title:NETGEAR Nighthawk Security vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=229324

Trust: 0.6

sources: CNNVD: CNNVD-202303-822

EXTERNAL IDS

db:NVDid:CVE-2023-27850

Trust: 3.3

db:JVNDBid:JVNDB-2023-005145

Trust: 0.8

db:CNNVDid:CNNVD-202303-822

Trust: 0.6

db:VULMONid:CVE-2023-27850

Trust: 0.1

sources: VULMON: CVE-2023-27850 // JVNDB: JVNDB-2023-005145 // CNNVD: CNNVD-202303-822 // NVD: CVE-2023-27850

REFERENCES

url:https://tenable.com/security/research/tra-2023-9

Trust: 2.5

url:https://nvd.nist.gov/vuln/detail/cve-2023-27850

Trust: 0.8

url:https://cxsecurity.com/cveshow/cve-2023-27850/

Trust: 0.6

url:https://nvd.nist.gov

Trust: 0.1

sources: VULMON: CVE-2023-27850 // JVNDB: JVNDB-2023-005145 // CNNVD: CNNVD-202303-822 // NVD: CVE-2023-27850

SOURCES

db:VULMONid:CVE-2023-27850
db:JVNDBid:JVNDB-2023-005145
db:CNNVDid:CNNVD-202303-822
db:NVDid:CVE-2023-27850

LAST UPDATE DATE

2025-03-01T23:05:01.697000+00:00


SOURCES UPDATE DATE

db:VULMONid:CVE-2023-27850date:2023-03-10T00:00:00
db:JVNDBid:JVNDB-2023-005145date:2023-11-07T02:38:00
db:CNNVDid:CNNVD-202303-822date:2023-03-16T00:00:00
db:NVDid:CVE-2023-27850date:2025-02-28T17:15:15.147

SOURCES RELEASE DATE

db:VULMONid:CVE-2023-27850date:2023-03-10T00:00:00
db:JVNDBid:JVNDB-2023-005145date:2023-11-07T00:00:00
db:CNNVDid:CNNVD-202303-822date:2023-03-10T00:00:00
db:NVDid:CVE-2023-27850date:2023-03-10T18:15:16.900