.. / CVE-2023-32077

Exploit for Netmaker - Hardcoded DNS Secret Key (CVE-2023-32077)

Description:

Netmaker makes networks with WireGuard. Prior to versions 0.17.1 and 0.18.6, hardcoded DNS key usage has been found in Netmaker allowing unauth users to interact with DNS API endpoints.

Nuclei Template

View the template here CVE-2023-32077.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-32077.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-32077