Security Advisory

CVE-2023-28338

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-15 00:00:00

Last updated 2025-02-27 14:20:22

Assigner tenable

State PUBLISHED

Description

Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)s web service containing a “Content-Type” of “multipartboundary=” will result in the request body being written to “/tmp/mulipartFile” on the device itself. A sufficiently large file will cause device resources to be exhausted, resulting in the device becoming unusable until it is rebooted.

← Browse all CVEs View on cve.org ↗