CVE-2023-28461
Published Mar 15, 2023
Last updated 2 years ago
Overview
- Description
- Array Networks Array AG Series and vxAG (9.4.0.481 and earlier) allow remote code execution. An attacker can browse the filesystem on the SSL VPN gateway using a flags attribute in an HTTP header without authentication. The product could then be exploited through a vulnerable URL. The 2023-03-09 vendor advisory stated "a new Array AG release with the fix will be available soon."
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Weaknesses
- nvd@nist.gov
- CWE-287
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D704D079-D1AF-40EA-98E7-BE1E01371B11",
"versionEndIncluding": "9.4.0.481"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EBE11A77-8C2F-46CA-87BA-47624380FFC1"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5ED51E1F-3155-40C6-B61C-73D6A9F64987"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F0BC33CF-FA0B-4556-B11E-61FF9B14880A"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A9C8C9AE-AF59-4E5A-93CD-A394F1A31FA0"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5E025A9D-6B7C-42B6-95EA-0A5726A919F4"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0771D54C-15DF-403C-8CFA-B1E7D0136F50"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7C9F6B87-E3D2-419A-B086-B981EF912F80"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D385DBD0-C4A9-4168-82C2-832E0E40F42D"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "01569AB3-736D-47FE-86DD-F08ACDDCD11E"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "22E45185-071F-414A-AF78-4739F15A1D93"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C6F0988E-5E75-486A-9229-956D38A51C35"
},
{
"criteria": "cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1D09E2CC-C1B5-40DC-AD1A-7C6AB20525DC"
},
{
"criteria": "cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6E149796-E3D7-4FAF-AB64-8D273E701861"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]