An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using crafted telnet commands via Redis server.
References
Link | Resource |
---|---|
https://extreme-networks.my.site.com/ExtrArticleDetail?an=000114378 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
17 Sep 2024, 17:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-284 |
27 Oct 2023, 15:54
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Extremenetworks
Extremenetworks exos |
|
CWE | CWE-863 | |
CPE | cpe:2.3:o:extremenetworks:exos:*:*:*:*:*:*:*:* | |
References | (MISC) https://extreme-networks.my.site.com/ExtrArticleDetail?an=000114378 - Vendor Advisory |
16 Oct 2023, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-16 20:15
Updated : 2024-09-17 17:35
NVD link : CVE-2023-43119
Mitre link : CVE-2023-43119
CVE.ORG link : CVE-2023-43119
JSON object : View
Products Affected
extremenetworks
- exos