CVE-2023-2382

Name of the Vulnerable Software and Affected Versions Netgear SRX5308 versions up to 4.3.5-3

Description A vulnerability exists in the Web Management Interface of the Netgear SRX5308, allowing for cross-site scripting attacks. This issue is caused by the lack of protection for the web page structure, enabling a remote attacker to exploit the vulnerability by sending a specially crafted HTTP request using the sysLogInfo.serverName parameter. The attack can be launched remotely and may allow an attacker to conduct a cross-site scripting attack.

Recommendations For Netgear SRX5308 versions up to 4.3.5-3, consider disabling the scgi-bin/platform.cgi endpoint or restricting access to it until a patch is available. Additionally, avoid using the sysLogInfo.serverName parameter in the affected API endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.