CVE Published: 29/11/2023 |
CVE Updated: 02/08/2024 |
CVE Year: 2023 Source: tenable |
Vendor: NETGEAR |
Product: NETGEAR ProSAFE Network Management System Status : PUBLISHED
CVE-2023-49693 Description
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing attackers to execute arbitrary code.
Metrics
CVSS Version: 3.1 |
Base Score: 9.8 CRITICAL Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H