COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-33532

CVE-2023-33532

Severity
critical
Source
NVD · cve
Published
2023-06-06
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-33532
⚡ RCE shame 50/100 rce

There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains web management privileges, they can inject commands into the post request parameters, thereby gaining shell privileges.

Players implicated

netgear · vendorr6250 · productr6250 firmware · product

Description

There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains web management privileges, they can inject commands into the post request parameters, thereby gaining shell privileges.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.