CVSS 3.1 Score 8.8 of 10 (high)


Published Aug 7, 2023
Updated: Aug 9, 2023
CWE ID 120


CVE-2023-39550 is a vulnerability that affects Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 products. The vulnerability is caused by multiple buffer overflows in the check_auth function, specifically through the http_passwd and http_username parameters. The risk score for this vulnerability is 66, with a base severity of HIGH and a base score of 8.8 according to [email protected]. The potential danger to organizations includes a high impact on integrity and confidentiality, as well as a low privilege requirement for exploitation. Remediation measures are not provided in the information available for this vulnerability at this time.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-39550 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options