CVE-2022-29383

CRITICAL EXPLOITED NUCLEI

NETGEAR ProSafe SSL VPN - SQL Injection

Title source: llm

Exploitation Summary

CVE-2022-29383 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including badboycxcc, cxaqhq. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository documents a SQL injection vulnerability (CVE-2022-29383) in NETGEAR ProSafe SSL VPN devices, specifically affecting the scgi-bin/platform.cgi endpoint. It includes screenshots and sqlmap commands demonstrating exploitation but lacks executable exploit code.

Description

NETGEAR ProSafe SSL VPN firmware FVS336Gv2 and FVS336Gv3 was discovered to contain a SQL injection vulnerability via USERDBDomains.Domainname at cgi-bin/platform.cgi.

Exploits (2)

nomisec WRITEUP 27 stars

by badboycxcc · infoleak

https://github.com/badboycxcc/Netgear-ssl-vpn-20211222-CVE-2022-29383

View Code ZIP pw:eip

This repository documents a SQL injection vulnerability (CVE-2022-29383) in NETGEAR ProSafe SSL VPN devices, specifically affecting the scgi-bin/platform.cgi endpoint. It includes screenshots and sqlmap commands demonstrating exploitation but lacks executable exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: NETGEAR ProSafe SSL VPN (FVS336Gv2 - FVS336Gv3)

No auth needed

Prerequisites: Network access to the vulnerable device · SQL injection payload (e.g., via sqlmap)

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WRITEUP

by cxaqhq · poc

https://github.com/cxaqhq/netgear-to-CVE-2022-29383

View Code ZIP pw:eip

This repository provides a writeup and references for CVE-2022-29383, a SQL injection vulnerability in NETGEAR ProSafe SSL VPN devices (FVS318Gv2 and FVS318N). It includes images demonstrating the vulnerability but lacks exploit code.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: NETGEAR ProSafe SSL VPN (FVS318Gv2, FVS318N)

No auth needed

Prerequisites: Network access to the vulnerable device · Firmware version affected by CVE-2022-29383

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

NETGEAR ProSafe SSL VPN firmware - SQL Injection

CRITICALVERIFIEDby elitebaz

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://www.netgear.com/about/security/

Exploit, Third Party Advisory x_refsource_misc

https://github.com/badboycxcc/Netgear-ssl-vpn-20211222

Scores

CVSS v3 9.8

EPSS 0.4896

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-11-13

CWE

CWE-89

Status published

Products (2)

netgear/ssl312_firmware fvs336gv2

netgear/ssl312_firmware fvs336gv3

Published May 13, 2022

Tracked Since Feb 18, 2026