Rewterz Threat Advisory –Multiple NETGEAR RAX30 Zero-Day Vulnerabilities

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

May 2, 2023

Rewterz Threat Alert – AsyncRAT – Active IOCs

May 2, 2023

Rewterz Threat Advisory –Multiple NETGEAR RAX30 Zero-Day Vulnerabilities

Severity

High

Analysis Summary

CVE-2023-27356 CVSS:6.8

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.

CVE-2023-27358 CVSS:8.8

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.

CVE-2023-27370 CVSS:5.7

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.

CVE-2023-27369 CVSS:8.8

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability.

CVE-2023-27368 CVSS:8.8

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.

CVE-2023-27367 CVSS:8.0

CVE-2023-27357 CVSS:6.5

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.

CVE-2023-27360 CVSS:7.5

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30. Authentication is not required to exploit this vulnerability.