CVE Vulnerabilities

CVE-2023-50677

Improper Privilege Management

Published: Mar 14, 2024 | Modified: Jul 28, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An issue in NETGEAR-DGND4000 v.1.1.00.15_1.00.15 allows a remote attacker to escalate privileges via the next_file parameter to the /setup.cgi component.

Weakness

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Affected Software

Name Vendor Start Version End Version
Dgnd4000_firmware Netgear 1.1.00.15 (including) 1.1.00.15 (including)

Potential Mitigations

References