Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-1525 — Path Traversal in Netgear Prosafe Network Management Software 300

CWE-22 — Path Traversal5 documents4 sources

Severity

8.6HIGHNVD

EPSS

82.7%

top 0.76%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Netgear Prosafe Network Management Software 300

Timeline

PublishedFeb 13

Latest updateMay 14

Description

Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and earlier allows remote authenticated users to read arbitrary files via a .. (dot dot) in the realName parameter.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:NExploitability: 3.9 | Impact: 4.0

Affected Packages1 packages

▶NVDnetgear/prosafe_network_management_software_3001.5.0.11

🔴Vulnerability Details

GHSA

GHSA-hfq5-cp94-28rv: Directory traversal vulnerability in data/config/image↗2022-05-14

▶

CVEList

CVE-2016-1525: Directory traversal vulnerability in data/config/image↗2016-02-13

▶

💥Exploits & PoCs

Exploit-DB

Netgear NMS300 ProSafe Network Management System - Arbitrary File Upload (Metasploit)↗2016-03-01

▶

Exploit-DB

Netgear NMS300 ProSafe Network Management System - Multiple Vulnerabilities↗2016-02-04

▶