7.2
CVE-2023-28460
- EPSS 0.69%
- Veröffentlicht 15.03.2023 23:15:10
- Zuletzt bearbeitet 21.11.2024 07:55:07
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginA command injection vulnerability was discovered in Array Networks APV products. A remote attacker can send a crafted packet after logging into the affected appliance as an administrator, resulting in arbitrary shell code execution. This is fixed in 8.6.1.262 or newer and 10.4.2.93 or newer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arraynetworks ≫ Array Os Version <= 8.6.1.243
Arraynetworks ≫ Apv10650 Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Array Os Version >= 9.0.1.12 <= 10.4.0.79
Arraynetworks ≫ Apv10650 Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Array Os Version >= 10.4.2.12 <= 10.4.2.58
Arraynetworks ≫ Apv10650 Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Array Os Version10.4.3.2
Arraynetworks ≫ Apv10650 Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
Arraynetworks ≫ Apv11600 Version-
Arraynetworks ≫ Apv1600 Version-
Arraynetworks ≫ Apv1600t Version-
Arraynetworks ≫ Apv1600v5 Version-
Arraynetworks ≫ Apv1800 Version-
Arraynetworks ≫ Apv2600 Version-
Arraynetworks ≫ Apv2600v5 Version-
Arraynetworks ≫ Apv2800 Version-
Arraynetworks ≫ Apv3600 Version-
Arraynetworks ≫ Apv3600v5 Version-
Arraynetworks ≫ Apv3650 Version-
Arraynetworks ≫ Apv5600 Version-
Arraynetworks ≫ Apv5800 Version-
Arraynetworks ≫ Apv6600 Version-
Arraynetworks ≫ Apv6600fips Version-
Arraynetworks ≫ Apv7600 Version-
Arraynetworks ≫ Apv7800 Version-
Arraynetworks ≫ Apv800 Version-
Arraynetworks ≫ Vapv Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.69% | 0.711 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.