Unrated severityNVD Advisory· Published Mar 15, 2023· Updated Feb 27, 2025
CVE-2023-28338
CVE-2023-28338
Description
Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary=” will result in the request body being written to “/tmp/mulipartFile” on the device itself. A sufficiently large file will cause device resources to be exhausted, resulting in the device becoming unusable until it is rebooted.
Affected products
2- Netgear/Nighthawk Wifi6 Router (RAX30)description
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.