Vulnerability Details

ID: CVE-2023-28461

HPI
MISC

Last Modified: March 24, 2023

Open in new window

Description

Array Networks Array AG Series and vxAG (9.4.0.481 and earlier) allow remote code execution. An attacker can browse the filesystem on the SSL VPN gateway using a flags attribute in an HTTP header without authentication. The product could then be exploited through a vulnerable URL. The 2023-03-09 vendor advisory stated "a new Array AG release with the fix will be available soon."

History

Twitter Activity

Tweets last week: 1

Remaining steady

Yahoo Activity

Yahoo results: 0

Remaining steady

EPSS History

Current EPSS Score: 0.00196

Remaining steady

Reddit Activity

Reddit Posts: 1

Remaining steady

Github Repos

Github Repos: 0

Remaining steady

Exploits

Found exploits:

CVSS V3

Attack Vector: Network

Attack Complexity: Low

Privileges Required: None

User Interaction: None

Scope: Unchanged

Confidentiality: High

Integrity: High

Availability: High

Base Score: 9.8

Exploitability Score: 3.9

Impact Score: 5.9

CVSS V3: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Specialize CVSS-Score

CWE-ID

CWE-287

Configuration

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:arraynetworks:arrayos_ag:::::::: Part: o Product: arrayos_ag Vendor: arraynetworks Version end including: 9.4.0.481	Alle Schwachstellen für arraynetworks
OR
OR
	cpe:2.3:h:arraynetworks:ag1000:-:::::::* Part: h Product: ag1000 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1000t:-:::::::* Part: h Product: ag1000t Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1000v5:-:::::::* Part: h Product: ag1000v5 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1100v5:-:::::::* Part: h Product: ag1100v5 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1150:-:::::::* Part: h Product: ag1150 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1200:-:::::::* Part: h Product: ag1200 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1200v5:-:::::::* Part: h Product: ag1200v5 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1500:-:::::::* Part: h Product: ag1500 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1500fips:-:::::::* Part: h Product: ag1500fips Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1500v5:-:::::::* Part: h Product: ag1500v5 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1600:-:::::::* Part: h Product: ag1600 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:ag1600v5:-:::::::* Part: h Product: ag1600v5 Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks
	cpe:2.3:h:arraynetworks:vxag:-:::::::* Part: h Product: vxag Vendor: arraynetworks Version: -	Alle Schwachstellen für arraynetworks

Change-History

Date: March 24, 2023

CWE-ID: Not defined
Base Score V3: Not defined
Exploitability Score V3: Not defined
Impact Score V3: Not defined
Cvss Vector V3: Not defined

Pre-Condition

                    <?xml version="1.0" ?>
<set operator="and">
    <set operator="and">
        <set operator="or">
            <prop key="operating_system" value="cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:*"/>
        </set>
        <set operator="or">
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:*"/>
        </set>
    </set>
</set>

Post-Condition

                      <?xml version="1.0" ?>
<set operator="and">
    <set operator="and">
        <set operator="or">
            <prop key="operating_system" value="cpe:2.3:o:arraynetworks:arrayos_ag:*:*:*:*:*:*:*:*"/>
        </set>
        <set operator="or">
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000t:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1000v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1100v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1150:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1200:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1200v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500fips:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1500v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1600:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:ag1600v5:-:*:*:*:*:*:*:*"/>
            <prop key="device" value="cpe:2.3:h:arraynetworks:vxag:-:*:*:*:*:*:*:*"/>
        </set>
    </set>
    <prop key="program_influence" value="input"/>
</set>

HPI-VDB — Database for IT-Attack Analysis

ID: CVE-2023-28461

Description

History

Twitter Activity

Yahoo Activity

EPSS History

Reddit Activity

Github Repos

Exploits

CVSS V3

CWE-ID

Configuration

Change-History

Pre-Condition

Post-Condition