PT-2017-15323 · NetGear · Wn-G300R3
Taizoh Tsukamoto
·
Published
2017-08-02
·
Updated
2017-08-07
·
CVE-2017-2283
CVSS v3.1
8.0
High
| Vector | AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
WN-G300R3 firmware versions 1.0.2 and earlier
Description
The issue allows an attacker with device access to execute arbitrary code on the device due to the use of hardcoded credentials.
Recommendations
For WN-G300R3 firmware versions 1.0.2 and earlier, update to a version that does not use hardcoded credentials to prevent arbitrary code execution.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wn-G300R3