Carding
Professional
- Messages
- 2,871
- Reaction score
- 2,381
- Points
- 113
Several dangerous vulnerabilities in network devices that allow you to execute your own code or gain control access without passing authentication:
A vulnerability (CVE-2023-36845) has been identified in Juniper SRX series firewalls and Juniper EX series switches built on the basis of Junos OS with the J-Web web interface, which allows you to read the contents of any file in the system, including a file with the root password set during the initial configuration, or perform an arbitrary search. PHP code via sending a request to the web interface without authentication. Example of executing the phpinfo () function: curl "http://10.12.72.1/?PHPRC=/dev/fd/0" --data-binary $'allow_url_include=1\nauto_prepend_file="data://text/plain;base64,PD8KICAgcGhwaW5mbygpOwo/Pg=="'
Three vulnerabilities in the ASUS RT-AX55, RT-AX56U_V2, and RT-AC86U wireless routers (CVE-2023-39238, CVE-2023-39239, and CVE-2023-39240) related to the lack of proper input data verification before using string formatting functions in web interface CGI scripts. Vulnerabilities allow you to execute your code remotely by sending a request without authentication.
95 vulnerabilities (CVE)-2023-35724 - CVE-2023-34756, CVE-2023-37310 - CVE-2023-37326, CVE-2023-41188 - CVE-2023-41230) in D-Link routers DIR-3040, DAP-1325 and DAP-2622. 79 vulnerabilities allow you to perform your code with root rights by sending a network request without authentication.
Vulnerability (CVE-2023-4498) in the Tenda N300 Wireless N VDSL2 wireless router, which allows remote access to the web management interface without passing authentication by specifying whitelisted keywords in the paths, the presence of which leads to the execution of a request without authentication.
Vulnerabilities in NETGEAR RAX30 routers (CVE-2023-40480, CVE-2023-40479) that allow you to execute commands with root rights by sending specially designed data via DHCP and UPnP. The problems are caused by the lack of checking external data before using it in the number of arguments to the system () function. Vulnerability in NETGEAR Orbi 760 routers (CVE-2023-41183), which allows access to the system without authentication due to an error in the implementation of the SOAP API.
A vulnerability (CVE-2023-36845) has been identified in Juniper SRX series firewalls and Juniper EX series switches built on the basis of Junos OS with the J-Web web interface, which allows you to read the contents of any file in the system, including a file with the root password set during the initial configuration, or perform an arbitrary search. PHP code via sending a request to the web interface without authentication. Example of executing the phpinfo () function: curl "http://10.12.72.1/?PHPRC=/dev/fd/0" --data-binary $'allow_url_include=1\nauto_prepend_file="data://text/plain;base64,PD8KICAgcGhwaW5mbygpOwo/Pg=="'
Three vulnerabilities in the ASUS RT-AX55, RT-AX56U_V2, and RT-AC86U wireless routers (CVE-2023-39238, CVE-2023-39239, and CVE-2023-39240) related to the lack of proper input data verification before using string formatting functions in web interface CGI scripts. Vulnerabilities allow you to execute your code remotely by sending a request without authentication.
95 vulnerabilities (CVE)-2023-35724 - CVE-2023-34756, CVE-2023-37310 - CVE-2023-37326, CVE-2023-41188 - CVE-2023-41230) in D-Link routers DIR-3040, DAP-1325 and DAP-2622. 79 vulnerabilities allow you to perform your code with root rights by sending a network request without authentication.
Vulnerability (CVE-2023-4498) in the Tenda N300 Wireless N VDSL2 wireless router, which allows remote access to the web management interface without passing authentication by specifying whitelisted keywords in the paths, the presence of which leads to the execution of a request without authentication.
Vulnerabilities in NETGEAR RAX30 routers (CVE-2023-40480, CVE-2023-40479) that allow you to execute commands with root rights by sending specially designed data via DHCP and UPnP. The problems are caused by the lack of checking external data before using it in the number of arguments to the system () function. Vulnerability in NETGEAR Orbi 760 routers (CVE-2023-41183), which allows access to the system without authentication due to an error in the implementation of the SOAP API.
