CVE-2023-44860

Vulnerability

The vulnerability resides in the Boa web server of NETIS N3Mv2 firmware version v1.0.1.865. Improper handling of the Authorization header causes the server to crash when a malformed header is sent, e.g., Authorization: Digest username="test". This affects the firmware version v1.0.1.865 [1].

Exploitation

An attacker can exploit this vulnerability without authentication by sending a crafted HTTP request to the router's web interface. The malformed Authorization header triggers a crash in the Boa web server, leading to a denial of service. No special network position is required beyond network access to the router [1].

Impact

Successful exploitation results in a denial of service (DoS), rendering the router unresponsive and disrupting network connectivity for all connected devices. The attacker does not gain code execution or data access, but causes significant service interruption [1].

Mitigation

As of the publication date (2023-10-06), no official firmware update has been released to address this issue. Mitigations include restricting access to the router's web interface to trusted networks and monitoring for abnormal traffic patterns. Users are advised to contact the vendor for a patch or consider replacing the device if it reaches end-of-life [1].