Rewterz

Rewterz Threat Advisory – CVE-2021-26919 – Apache Druid code execution

March 30, 2021
Rewterz

Rewterz Threat Alert – LokiBot Malware – IOCs

March 30, 2021

Rewterz Threat Advisory – Multiple Netgear ProSAFE Vulnerabilities

Severity

High

Analysis Summary

CVE-2021-27275

Netgear ProSAFE could allow a remote authenticated attacker to traverse directories on the system caused by a specific flaw that exists within the ConfigFileController class. An attacker could send a specially-crafted URL request containing “dot dot” sequences (/../) in the realName parameter to view arbitrary files on the system and cause a denial of service.

CVE-2021-27276

Netgear ProSAFE is vulnerable to a denial of service, caused by directory traversal vulnerability within the ReportTemplateController class. By persuading a victim to open a specially-crafted request, a remote attacker could exploit this vulnerability to cause the application to crash.

Impact

Denial of service

Affected Vendors

NETGEAR

Afffected Products

NetGear ProSAFE

Remediation

Refer to NetGear Security advisory for patch, upgrade or suggested workaround information.

Security-Advisory PSV-2020-0500

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.