CVE-2023-40254

🗓️ 11 Aug 2023 06:08:19Reported by krcertType

Vulnerability in Genians Genian NAC and ZTNA for malicious software update

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-40254	11 Aug 202312:27	–	circl
CNNVD	Genians Genian NAC Security Vulnerability	11 Aug 202300:00	–	cnnvd
CVE	CVE-2023-40254	11 Aug 202306:08	–	cve
EUVD	EUVD-2023-44851	3 Oct 202520:07	–	euvd
NVD	CVE-2023-40254	11 Aug 202307:15	–	nvd
OSV	CVE-2023-40254	11 Aug 202307:15	–	osv
Prion	Design/Logic Flaw	11 Aug 202307:15	–	prion
Positive Technologies	PT-2023-27349 · Genians · Genian Nac Suite +2	11 Aug 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-40254	11 Aug 202306:08	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "product": "Genian NAC V4.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V4.0.156",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V4.0.155",
        "status": "affected",
        "version": "V4.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian NAC V5.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V5.0.42 (Revision 117461)",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V5.0.42 (Revision 117460)",
        "status": "affected",
        "version": "V5.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian NAC Suite V5.0",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V5.0.55",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V5.0.54",
        "status": "affected",
        "version": "V5.0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Genian ZTNA",
    "vendor": "Genians",
    "versions": [
      {
        "changes": [
          {
            "at": "V6.0.16",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "V6.0.15",
        "status": "affected",
        "version": "V6.0.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
docs	www.docs.genians.com/nac/5.0/release/ko/advisories/GN-SA-2023-001.html

26 Oct 2023 05:26Current

9.8High risk

Vulners AI Score9.8

CVSS 3.17.5

EPSS0.00174

CWE-89