CVE-2023-40251

🗓️ 17 Aug 2023 06:54:14Reported by krcertType

CVE-2023-40251 Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack. This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2023-40251	17 Aug 202312:37	–	circl
CNNVD	Genians Genian NAC 安全漏洞	17 Aug 202300:00	–	cnnvd
Cvelist	CVE-2023-40251	17 Aug 202306:54	–	cvelist
EUVD	EUVD-2023-44848	3 Oct 202520:07	–	euvd
NVD	CVE-2023-40251	17 Aug 202307:15	–	nvd
OSV	CVE-2023-40251	17 Aug 202307:15	–	osv
Prion	Design/Logic Flaw	17 Aug 202307:15	–	prion
Vulnrichment	CVE-2023-40251	17 Aug 202306:54	–	vulnrichment

NVD

Node

genians genian_nacRange4.0.0–4.0.156-

genians genian_nacRange5.0.0–5.0.55-

genians genian_nacMatch5.0.42-lts

genians genian_nacMatch5.0.42revision_117460lts

genians genian_ztnaRange6.0.0–6.0.16

[
  {
    "defaultStatus": "affected",
    "product": "Genian NAC V4.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V4.0.156",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V4.0.155",
        "status": "affected",
        "version": "V4.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian NAC V5.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V5.0.42 (Revision 117461)",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V5.0.42 (Revision 117460)",
        "status": "affected",
        "version": "V5.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian NAC Suite V5.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V5.0.55",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V5.0.54",
        "status": "affected",
        "version": "V5.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian ZTNA",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V6.0.16",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V6.0.15",
        "status": "affected",
        "version": "V6.0.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
docs	www.docs.genians.com/nac/5.0/release/ko/advisories/GN-SA-2023-001.html

21 Nov 2024 08:19Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.2 - 5.9

EPSS0.00037

SSVC

CWE-311