all InfoSec news
Netgear RAX30 Multiple Vulnerabilities
March 8, 2023, 9:22 p.m. | Jimi Sebree
Tenable Research Advisories www.tenable.com
ReadyShare Implementation Symlink Attacks (CVE-2023-27850)
The default ReadyShare functionality automatically shares the contents of an inserted USB drive or other configured network share. These shares are accessible to a guest account via FTP by default or via HTTP unauthenticated. An attacker with the ability to configure a share or insert a USB drive with specially crafted symlinks can reveal and modify arbitrary files on the device.
CVSSv3 - 7.6 - AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
ReadyShare Default Share Configurations Allow …
account attacks cve default drive ftp http netgear network share usb usb drive vulnerabilities
More from www.tenable.com / Tenable Research Advisories
Approach.App Multiple Vulnerabilities
1 week, 6 days ago |
www.tenable.com
Path Traversal Affecting Multiple CData Products
3 weeks, 6 days ago |
www.tenable.com
Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities
1 month, 2 weeks ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Information Security Specialist, Sr. (Container Hardening)
@ Rackner | San Antonio, TX
Principal Security Researcher (Advanced Threat Prevention)
@ Palo Alto Networks | Santa Clara, CA, United States
EWT Infosec | IAM Technical Security Consultant - Manager
@ KPMG India | Bengaluru, Karnataka, India
Security Engineering Operations Manager
@ Gusto | San Francisco, CA; Denver, CO; Remote
Network Threat Detection Engineer
@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC