4.9
CVE-2023-24613
- EPSS 0.41%
- Veröffentlicht 03.02.2023 02:15:07
- Zuletzt bearbeitet 26.03.2025 15:15:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arraynetworks ≫ Arrayos Ag Version <= 9.4.0.470
Arraynetworks ≫ Ag1000 Version-
Arraynetworks ≫ Ag1000t Version-
Arraynetworks ≫ Ag1000v5 Version-
Arraynetworks ≫ Ag1100v5 Version-
Arraynetworks ≫ Ag1150 Version-
Arraynetworks ≫ Ag1200 Version-
Arraynetworks ≫ Ag1200v5 Version-
Arraynetworks ≫ Ag1500 Version-
Arraynetworks ≫ Ag1500fips Version-
Arraynetworks ≫ Ag1500v5 Version-
Arraynetworks ≫ Ag1600 Version-
Arraynetworks ≫ Ag1600v5 Version-
Arraynetworks ≫ Vxag Version-
Arraynetworks ≫ Ag1000t Version-
Arraynetworks ≫ Ag1000v5 Version-
Arraynetworks ≫ Ag1100v5 Version-
Arraynetworks ≫ Ag1150 Version-
Arraynetworks ≫ Ag1200 Version-
Arraynetworks ≫ Ag1200v5 Version-
Arraynetworks ≫ Ag1500 Version-
Arraynetworks ≫ Ag1500fips Version-
Arraynetworks ≫ Ag1500v5 Version-
Arraynetworks ≫ Ag1600 Version-
Arraynetworks ≫ Ag1600v5 Version-
Arraynetworks ≫ Vxag Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.41% | 0.608 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 1.2 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 4.9 | 1.2 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.