CVE-2023-38096 : NETGEAR ProSAFE Network Management System MyHandlerInterceptor Authentication By

NETGEAR ProSAFE Network Management System MyHandlerInterceptor Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of NETGEAR ProSAFE Network Management System. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MyHandlerInterceptor class. The issue results from improper implementation of the authentication mechanism. An attacker can leverage this vulnerability to bypass authentication on the system. . Was ZDI-CAN-19718.

Published 2024-05-03 01:58:59

Updated 2025-02-06 18:01:33

Source Zero Day Initiative

View at NVD, CVE.org

Products affected by CVE-2023-38096

Netgear » Prosafe Network Management System
Versions before (<) 1.7.0.20
cpe:2.3:a:netgear:prosafe_network_management_system:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-38096

EPSS FAQ

74.53%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 99 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2023-38096

NETGEAR ProSafe Network Management System 300 Arbitrary File Upload

Disclosure Date: 2016-02-04

First seen: 2020-04-26

exploit/windows/http/netgear_nms_rce

Netgear's ProSafe NMS300 is a network management utility that runs on Windows systems. The application has multiple vulnerabilities that can allow an unauthenticated remote attacker to execute code as SYSTEM user. Vulnerabilities include authentication bypass,

More information

CVSS scores for CVE-2023-38096

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.8	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	Zero Day Initiative	2024-05-03
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST	2025-02-06
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-38096

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: zdi-disclosures@trendmicro.com (Secondary)

References for CVE-2023-38096

https://www.zerodayinitiative.com/advisories/ZDI-23-920/

ZDI-23-920 | Zero Day Initiative
Third Party Advisory
https://kb.netgear.com/000065707/Security-Advisory-for-Multiple-Vulnerabilities-on-the-ProSAFE-Network-Management-System-PSV-2023-0024-PSV-2023-0025

Security Advisory for Multiple Vulnerabilities on the ProSAFE® Network Management System, PSV-2023-0024 & PSV-2023-0025 - NETGEAR Support
Vendor Advisory

CVEs referencing this url

Jump to