CVE-2023-46306

Summary

CVE	CVE-2023-46306
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-10-22 21:15:00 UTC
Updated	2023-11-02 15:47:00 UTC
Description	The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8 before 4.8.0.101 executes an OS command constructed with unsanitized user input: shell metacharacters in the /admin/gnssAutoAlign.php device_id parameter. This occurs because another thread can be started before the trap that triggers the cleanup function. A successful exploit could allow an authenticated user to execute arbitrary commands with elevated privileges. NOTE: this is different from CVE-2023-0861 and CVE-2023-0862, which were fixed in version 4.6.0.105.

Risk And Classification

Problem Types: CWE-78

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Netmodule	Nb1601	-	All	All	All
Hardware	Netmodule	Nb1800	-	All	All	All
Hardware	Netmodule	Nb1810	-	All	All	All
Hardware	Netmodule	Nb2800	-	All	All	All
Hardware	Netmodule	Nb2810	-	All	All	All
Hardware	Netmodule	Nb3701	-	All	All	All
Hardware	Netmodule	Nb3800	-	All	All	All
Application	Netmodule	Netmodule Router Software	All	All	All	All
Hardware	Netmodule	Ng800	-	All	All	All

References

Reference	Source	Link	Tags
share.netmodule.com/public/system-software/4.8/4.8.0.101/NRSW-RN-4.8.0.101.pdf	MISC	share.netmodule.com
Advisory \| NetModule Router Software Race Condition Leads to Remote Code Execution – Pentest Blog	MISC	pentest.blog
share.netmodule.com/public/system-software/4.6/4.6.0.106/NRSW-RN-4.6.0.106.pdf	MISC	share.netmodule.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.