CVE-2023-24613 - Vulnerability Details

Vendors	Products
Arraynetworks	Ag1000 Ag1000t Ag1000v5 Ag1100v5 Ag1150 Ag1200 Ag1200v5 Ag1500 Ag1500fips Ag1500v5 Ag1600 Ag1600v5 Arrayos Ag Vxag

Link	Providers
https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-24613", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-08-02T11:03:18.776Z", "dateReserved": "2023-01-30T00:00:00", "datePublished": "2023-02-03T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-02-03T00:00:00"}, "descriptions": [{"lang": "en", "value": "The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T11:03:18.776Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

state : PUBLISHED (string)

cveId : CVE-2023-24613 (string)

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

dateUpdated : 2024-08-02T11:03:18.776Z (string)

dateReserved : 2023-01-30T00:00:00 (string)

datePublished : 2023-02-03T00:00:00 (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

dateUpdated : 2023-02-03T00:00:00 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481. (string)

}

]

affected : [ »

0 : { »

vendor : n/a (string)

product : n/a (string)

versions : [ »

0 : { »

version : n/a (string)

status : affected (string)

}

]

}

]

references : [ »

0 : { »

url : https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : text (string)

lang : en (string)

description : n/a (string)

}

]

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-02T11:03:18.776Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:*", "matchCriteriaId": "074EC86B-4746-4E34-AB53-E6437C22ED25", "versionEndIncluding": "9.4.0.470", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:*", "matchCriteriaId": "EBE11A77-8C2F-46CA-87BA-47624380FFC1", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:*", "matchCriteriaId": "5ED51E1F-3155-40C6-B61C-73D6A9F64987", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:*", "matchCriteriaId": "F0BC33CF-FA0B-4556-B11E-61FF9B14880A", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:*", "matchCriteriaId": "A9C8C9AE-AF59-4E5A-93CD-A394F1A31FA0", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:*", "matchCriteriaId": "5E025A9D-6B7C-42B6-95EA-0A5726A919F4", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:*", "matchCriteriaId": "0771D54C-15DF-403C-8CFA-B1E7D0136F50", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:*", "matchCriteriaId": "7C9F6B87-E3D2-419A-B086-B981EF912F80", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:*", "matchCriteriaId": "D385DBD0-C4A9-4168-82C2-832E0E40F42D", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:*", "matchCriteriaId": "01569AB3-736D-47FE-86DD-F08ACDDCD11E", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:*", "matchCriteriaId": "22E45185-071F-414A-AF78-4739F15A1D93", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:*", "matchCriteriaId": "C6F0988E-5E75-486A-9229-956D38A51C35", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:*", "matchCriteriaId": "1D09E2CC-C1B5-40DC-AD1A-7C6AB20525DC", "vulnerable": false}, {"criteria": "cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:*", "matchCriteriaId": "6E149796-E3D7-4FAF-AB64-8D273E701861", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481."}, {"lang": "es", "value": "La interfaz de usuario de Array Networks AG Series y vxAG hasta la versi\u00f3n 9.4.0.470 podr\u00eda permitir a un atacante remoto utilizar la herramienta gdb para sobrescribir la pila de llamadas de funciones backend despu\u00e9s de acceder al sistema con privilegios de administrador. Un exploit exitoso podr\u00eda aprovechar esta vulnerabilidad en el archivo binario backend que maneja la interfaz de usuario para provocar un ataque de denegaci\u00f3n de servicio. Esto se soluciona en AG 9.4.0.481."}], "id": "CVE-2023-24613", "lastModified": "2024-11-21T07:48:14.463", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-02-03T02:15:07.997", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 074EC86B-4746-4E34-AB53-E6437C22ED25 (string)

versionEndIncluding : 9.4.0.470 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EBE11A77-8C2F-46CA-87BA-47624380FFC1 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 5ED51E1F-3155-40C6-B61C-73D6A9F64987 (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F0BC33CF-FA0B-4556-B11E-61FF9B14880A (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A9C8C9AE-AF59-4E5A-93CD-A394F1A31FA0 (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 5E025A9D-6B7C-42B6-95EA-0A5726A919F4 (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0771D54C-15DF-403C-8CFA-B1E7D0136F50 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7C9F6B87-E3D2-419A-B086-B981EF912F80 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D385DBD0-C4A9-4168-82C2-832E0E40F42D (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 01569AB3-736D-47FE-86DD-F08ACDDCD11E (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 22E45185-071F-414A-AF78-4739F15A1D93 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C6F0988E-5E75-486A-9229-956D38A51C35 (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1D09E2CC-C1B5-40DC-AD1A-7C6AB20525DC (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6E149796-E3D7-4FAF-AB64-8D273E701861 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend binary file that handles the user interface to a cause denial of service attack. This is fixed in AG 9.4.0.481. (string)

}

1 : { »

lang : es (string)

value : La interfaz de usuario de Array Networks AG Series y vxAG hasta la versión 9.4.0.470 podría permitir a un atacante remoto utilizar la herramienta gdb para sobrescribir la pila de llamadas de funciones backend después de acceder al sistema con privilegios de administrador. Un exploit exitoso podría aprovechar esta vulnerabilidad en el archivo binario backend que maneja la interfaz de usuario para provocar un ataque de denegación de servicio. Esto se soluciona en AG 9.4.0.481. (string)

}

]

id : CVE-2023-24613 (string)

lastModified : 2024-11-21T07:48:14.463 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 4.9 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : HIGH (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.2 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2023-02-03T02:15:07.997 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/FieldNotice/Array_Networks_Security_Advisory_for_UI_Stack_Overflow_Vulnerability_ID-128285_V1.0.pdf (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-787 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object