CVE-2024-23690

EOL Netgear FVS336v3 Telnet Configuration Backup Command Injection

Description

The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability in the Telnet interface. An authenticated and remote attacker can execute arbitrary OS commands as root over Telnet by sending crafted "util backup_configuration" commands.

INFO

Published Date :

2025-02-04T14:34:00.370Z

Last Modified :

2025-11-22T12:19:16.575Z

Source :

VulnCheck

AFFECTED PRODUCTS

The following products are affected by CVE-2024-23690 vulnerability.

Vendors	Products
Netgear	Fvs336gv2 Fvs336gv3

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-23690.

URL	Resource
https://vulncheck.com/advisories/netgear-fvs336g-rce

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact