CVE-2022-27643

CWE-120 — Classic Buffer Overflow4 documents4 sources

Severity

8.8HIGH

EPSS

1.2%

top 20.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Netgear D6220 Firmware Netgear D6400 Firmware Netgear D7000v2 Firmware +25 more

Timeline

PublishedMar 29

Description

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SOAP requests. When parsing the SOAPAction header, the process does not properly validate the length of user-supplied data prior to copying it to a buffer. An attacker can leverage this vulnerability to execute code in the context of root.…

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages28 packages

▶CVEListV5netgear/r6700v31.0.4.120_10.0.91

▶NVDnetgear/d6220_firmware< 1.0.0.80

▶NVDnetgear/d6400_firmware< 1.0.0.114

▶NVDnetgear/r6400_firmware< 1.0.1.78+1

▶NVDnetgear/r6700_firmware< 1.0.4.126

🔴Vulnerability Details

GHSA

GHSA-h8wj-xxvx-cv2r: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1↗2023-03-29

▶

CVEList

CVE-2022-27643: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1↗2023-03-29

▶

🔍Detection Rules

Suricata

ET EXPLOIT NetGear R6700v3 upnpd Buffer Overflow Inbound (CVE-2022-27643)↗2022-04-03

▶