Lucene search

[email protected]CVE-2023-35803

HistoryOct 04, 2023 - 10:15 p.m.

CVE-2023-35803

2023-10-0422:15:09

CWE-120

[email protected]

web.nvd.nist.gov

cve-2023-35803

iq engine

buffer overflow

extreme network ap

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

IQ Engine before 10.6r2 on Extreme Network AP devices has a Buffer Overflow.

Affected configurations

NVD

Node

extremenetworksap3000Match-

extremenetworksap3000xMatch-

extremenetworksap302wMatch-

extremenetworksap305cMatch-

extremenetworksap305c-1Match-

extremenetworksap305cxMatch-

extremenetworksap4000Match-

extremenetworksap4000-1Match-

extremenetworksap410cMatch-

extremenetworksap410c-1Match-

extremenetworksap460cMatch-

extremenetworksap460s12cMatch-

extremenetworksap460s6cMatch-

extremenetworksap5010Match-

extremenetworksap5050dMatch-

extremenetworksap5050uMatch-

extremenetworksap510cMatch-

extremenetworksap510cxMatch-

extremenetworksap630Match-

extremenetworksap650Match-

extremenetworksap650xMatch-

AND

extremenetworksiq_engineRange<10.6r2

Node

extremenetworksap1130Match-

extremenetworksap122Match-

extremenetworksap130Match-

extremenetworksap150wMatch-

extremenetworksap250Match-

extremenetworksap30Match-

extremenetworksap550Match-

AND

extremenetworksiq_engineRange<10.6r5

CPENameOperatorVersion
extremenetworks:iq_engineextremenetworks iq enginelt10.6r2

CPE	Name	Operator	Version
extremenetworks:iq_engine	extremenetworks iq engine	lt	10.6r2

References

community.extremenetworks.com/t5/security-advisories-formerly/sa-2023-067-iq-engine-acsd-service-buffer-overflow-cve-2023/ba-p/96472

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Related for CVE-2023-35803

zdi1 nvd1 cvelist1 prion1 githubexploit1