CVE-2023-28338 — HIGH (7.5)

Vulnerability Description

Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary=” will result in the request body being written to “/tmp/mulipartFile” on the device itself. A sufficiently large file will cause device resources to be exhausted, resulting in the device becoming unusable until it is rebooted.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Netgear	Rax30 Firmware	All versions
Netgear	Rax30	-

Related Weaknesses (CWE)

CWE-770

References

https://drupal9.tenable.com/security/research/tra-2023-12Permissions Required
https://drupal9.tenable.com/security/research/tra-2023-12Permissions Required

FAQ

What is CVE-2023-28338?

CVE-2023-28338 is a vulnerability with a CVSS score of 7.5 (HIGH). Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary=” will result in the request body being written to “/tmp/mulipartFile” on t...

How severe is CVE-2023-28338?

CVE-2023-28338 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-28338?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear Rax30 Firmware, Netgear Rax30.