Rewterz Threat Alert – Bitter APT Group – Active IOCs
November 13, 2023
NETGEAR NMS300 could allow a remote attacker to execute arbitrary commands on the system, caused by improper neutralization of user-supplied input. By sending a specially crafted request using the password parameter, an attacker could exploit this vulnerability to execute arbitrary commands on the system.
NETGEAR RBR760 could allow a remote attacker to bypass security restrictions. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass authentication on the system.
- Gain Access
- Security Bypass
Indicators Of Compromise
- NETGEAR NMS300
- NETGEAR RBR760
Refer to NETGEAR Security Advisory for patch, upgrade or suggested workaround information.