#VU73220 Link following in RAX30 - CVE-2023-27850

Cybersecurity Help s.r.o.

Published: 2023-03-10

Vulnerability identifier: #VU73220

Vulnerability risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-27850

CWE-ID: CWE-59

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
RAX30
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: NETGEAR

Description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to a symlink following issue in the ReadyShare functionality. An attacker with physical access can reveal and modify arbitrary files on the device.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

RAX30: before 1.0.10.94

External links
https://www.tenable.com/security/research/tra-2023-9

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in NETGEAR RAX devices