CVE-2023-24613
Published Feb 3, 2023
Last updated 2 years ago
Overview
- Description
- The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 4.9
- Impact score
- 3.6
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- CWE-787
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EBE11A77-8C2F-46CA-87BA-47624380FFC1"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5ED51E1F-3155-40C6-B61C-73D6A9F64987"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F0BC33CF-FA0B-4556-B11E-61FF9B14880A"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A9C8C9AE-AF59-4E5A-93CD-A394F1A31FA0"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5E025A9D-6B7C-42B6-95EA-0A5726A919F4"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0771D54C-15DF-403C-8CFA-B1E7D0136F50"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7C9F6B87-E3D2-419A-B086-B981EF912F80"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D385DBD0-C4A9-4168-82C2-832E0E40F42D"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "01569AB3-736D-47FE-86DD-F08ACDDCD11E"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "22E45185-071F-414A-AF78-4739F15A1D93"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C6F0988E-5E75-486A-9229-956D38A51C35"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1D09E2CC-C1B5-40DC-AD1A-7C6AB20525DC"
},
{
"criteria": "cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6E149796-E3D7-4FAF-AB64-8D273E701861"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "074EC86B-4746-4E34-AB53-E6437C22ED25",
"versionEndIncluding": "9.4.0.470"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]