CVE-2023-49693

Name of the Vulnerable Software and Affected Versions NETGEAR ProSAFE Network Management System (affected versions not specified)

Description The issue is related to the implementation of the Java Debug Wire Protocol (JDWP) in the ProSAFE Network Management System, which lacks authentication for a critical function. This allows attackers to execute arbitrary code by connecting to port 11611. The vulnerability can be exploited remotely by unauthenticated users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to port 11611 to minimize the risk of exploitation. Avoid using the Java Debug Wire Protocol (JDWP) until the issue is resolved.