Vulnerability Description
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing attackers to execute arbitrary code.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Prosafe Network Management System | < 1.7.0.34 |
Related Weaknesses (CWE)
References
- https://kb.netgear.com/000065886/Security-Advisory-for-Sensitive-Information-DisVendor Advisory
- https://www.tenable.com/security/research/tra-2023-39ExploitThird Party Advisory
- https://kb.netgear.com/000065886/Security-Advisory-for-Sensitive-Information-DisVendor Advisory
- https://www.tenable.com/security/research/tra-2023-39ExploitThird Party Advisory
FAQ
What is CVE-2023-49693?
CVE-2023-49693 is a vulnerability with a CVSS score of 9.8 (CRITICAL). NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing attackers to execute arbitrary c...
How severe is CVE-2023-49693?
CVE-2023-49693 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-49693?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Prosafe Network Management System.