ZDI-23-839: NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability

Read Time:8 Second

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability.

perl-Net-OAuth-0.30-1.fc41

FEDORA-2025-f0077db20c Packages in this update: perl-Net-OAuth-0.30-1.fc41 Update description: Update to 0.30, fixes CVE-2025-22376 Read More

January 6, 2025

perl-Net-OAuth-0.30-1.fc40

FEDORA-2025-05e642f1ef Packages in this update: perl-Net-OAuth-0.30-1.fc40 Update description: Update to 0.30, fixes CVE-2025-22376 Read More

January 6, 2025

perl-Net-OAuth-0.30-1.el10_0

FEDORA-EPEL-2025-d8034c0356 Packages in this update: perl-Net-OAuth-0.30-1.el10_0 Update description: Update to 0.30, fixes CVE-2025-22376 Read More

January 6, 2025

golang-github-aws-sdk-2-20250103-1.fc41 golang-github-aws-smithy-1.22.1-1.fc41 golang-github-ncw-swift-2-2.0.3-1.fc41 rclone-1.68.2-1.fc41

FEDORA-2025-0620fdebb6 Packages in this update: golang-github-aws-sdk-2-20250103-1.fc41 golang-github-aws-smithy-1.22.1-1.fc41 golang-github-ncw-swift-2-2.0.3-1.fc41 rclone-1.68.2-1.fc41 Update description: Fix for CVE-2024-52522 & CVE-2024-45338 Read More

January 5, 2025

mupdf-1.24.6-4.fc41

FEDORA-2025-7d002ee0e7 Packages in this update: mupdf-1.24.6-4.fc41 Update description: fix CVE-2024-46657 (rhbz#2331627) Read More

January 5, 2025

golang-github-aws-sdk-2-20250103-1.fc42 golang-github-rclone-gofakes3-0.0.3-1.fc42 rclone-1.68.2-1.fc42

FEDORA-2025-9b0b1cc333 Packages in this update: golang-github-aws-sdk-2-20250103-1.fc42 golang-github-rclone-gofakes3-0.0.3-1.fc42 rclone-1.68.2-1.fc42 Update description: Fix for CVE-2024-52522 Read More

January 4, 2025

Friday Squid Blogging: Anniversary Post

US Sanctions Chinese Cybersecurity Firm for Global Botnet Attacks

Atos Group Denies Space Bears’ Ransomware Attack Claims

ShredOS

Crypto Boss Extradited to Face $40bn Fraud Charges

DDoS Disrupts Japanese Mobile Giant Docomo

Web3 Attacks Result in $2.3Bn in Cryptocurrency Losses

Apple Agrees $95M Settlement Over Siri Privacy Violations

US Confirms Russian GenAI Disinformation Op Targeted Election

ZDI-23-839: NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability

perl-Net-OAuth-0.30-1.fc41

perl-Net-OAuth-0.30-1.fc40

perl-Net-OAuth-0.30-1.el10_0

golang-github-aws-sdk-2-20250103-1.fc41 golang-github-aws-smithy-1.22.1-1.fc41 golang-github-ncw-swift-2-2.0.3-1.fc41 rclone-1.68.2-1.fc41

mupdf-1.24.6-4.fc41

golang-github-aws-sdk-2-20250103-1.fc42 golang-github-rclone-gofakes3-0.0.3-1.fc42 rclone-1.68.2-1.fc42