- Description
- Improper Authentication vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Authentication Abuse.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.
- Source
- vuln@krcert.or.kr
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:genians:genian_nac:*:*:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BE039840-D93C-49CA-BB6A-B70771196C1B",
"versionEndExcluding": "4.0.156",
"versionStartIncluding": "4.0.0"
},
{
"criteria": "cpe:2.3:a:genians:genian_nac:*:*:*:*:-:*:*:*",
"vulnerable": true,
"matchCriteriaId": "04EF7B43-ADE3-474E-8E9F-7B2AD27FAB0C",
"versionEndExcluding": "5.0.55",
"versionStartIncluding": "5.0.0"
},
{
"criteria": "cpe:2.3:a:genians:genian_nac:5.0.42:-:*:*:lts:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E514BF16-6FE5-4029-BBFB-87A487C5BC07"
},
{
"criteria": "cpe:2.3:a:genians:genian_nac:5.0.42:revision_117460:*:*:lts:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A8D2C71-F0A1-41D4-9A84-EAE0CBC39B22"
},
{
"criteria": "cpe:2.3:a:genians:genian_ztna:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A36D6C47-C07E-41F3-9051-47CE254B01D0",
"versionEndExcluding": "6.0.16",
"versionStartIncluding": "6.0.0"
}
],
"operator": "OR"
}
]
}
]