CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-47210

The default console presented to users over telnet (when enabled) is restricted to a subset of commands. Commands issued at this console, however, appear to be fed directly into a system call or other similar function. This allows any authenticated user to execute arbitrary commands on the device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.3%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2022-47210

Netgear » Rax30 » Version: N/A

cpe:2.3:h:netgear:rax30:-
Netgear » Rax30 Firmware » Version: N/A

cpe:2.3:o:netgear:rax30_firmware:-
Netgear » Rax30 Firmware » Version: 1.0.3.64

cpe:2.3:o:netgear:rax30_firmware:1.0.3.64
Netgear » Rax30 Firmware » Version: 1.0.4.66

cpe:2.3:o:netgear:rax30_firmware:1.0.4.66
Netgear » Rax30 Firmware » Version: 1.0.5.70

cpe:2.3:o:netgear:rax30_firmware:1.0.5.70
Netgear » Rax30 Firmware » Version: 1.0.6.74

cpe:2.3:o:netgear:rax30_firmware:1.0.6.74
Netgear » Rax30 Firmware » Version: 1.0.7.78

cpe:2.3:o:netgear:rax30_firmware:1.0.7.78

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-47210

Products

Pricing

Contact Us