CVE-2023-34563
Published: 20 June 2023
Summary
CVE-2023-34563 is a critical-severity Classic Buffer Overflow (CWE-120) vulnerability in Netgear R6250 Firmware. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 4.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
Netgear R6250 firmware version 1.0.4.48 contains a buffer overflow vulnerability (CWE-120) that occurs after authentication. The issue is rated 9.8 under CVSS 3.1 with a vector of AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, reflecting the potential for complete loss of confidentiality, integrity, and availability on the affected device.
Remote attackers can trigger the overflow to achieve arbitrary code execution or denial of service. The provided EPSS values are 0.1778 currently and 0.1852 at peak, indicating moderate and relatively stable exploitation probability since disclosure.
Netgear's security advisories page and associated technical write-ups on GitHub outline vendor guidance for the R6250, including any available firmware updates or configuration changes to address the flaw. No information on observed in-the-wild exploitation is supplied.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-38618
Vulnerability details
netgear R6250 Firmware Version 1.0.4.48 is vulnerable to Buffer Overflow after authentication.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Platform-independent managed code eliminates the need for unchecked native buffer copies that are the root cause of classic buffer overflows.