CVE-2023-49693

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 29, 2023
Updated: Dec 5, 2023
CWE ID 306

Summary

CVE-2023-49693 is a critical vulnerability affecting NETGEAR ProSAFE Network Management Systems. The issue stems from the Java Debug Wire Protocol (JDWP) listening on port 11611, which is remotely accessible without authentication. This exposure grants attackers the ability to execute arbitrary code, posing a significant risk to affected networks. Unauthorized access and exploitation of this vulnerability can lead to serious security breaches and potential data loss. It is strongly recommended that users update their systems to the latest available patch to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Netgear ProSafe Network Management System

Affected Vendors

  • Netgear, Inc.