CVE-2023-0849
Published: 15 February 2023
Summary
CVE-2023-0849 is a medium-severity Command Injection (CWE-77) vulnerability in Netgear Wndr3700 Firmware. Its CVSS base score is 4.7 (Medium).
Operationally, ranked in the top 26.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-12847
Vulnerability details
A vulnerability has been found in Netgear WNDR3700v2 1.0.1.14 and classified as critical. This vulnerability affects unknown code of the component Web Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed…
more
to the public and may be used. The identifier of this vulnerability is VDB-221152.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.