Lucene search

[email protected]NVD:CVE-2023-23296

HistoryFeb 23, 2023 - 11:15 p.m.

CVE-2023-23296

2023-02-2323:15:11

CWE-400

[email protected]

web.nvd.nist.gov

korenix jetwave

4200 series

3200 series

denial of service

formdefault

vulnerability

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.7%

JSON

Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vulnerable to Denial of Service via /goform/formDefault.

Affected configurations

NVD

Node

korenixjetwave_2212g_firmwareMatch1.3.t

AND

korenixjetwave_2212gMatch-

Node

korenixjetwave_2212x_firmwareMatch1.3.0

AND

korenixjetwave_2212xMatch-

Node

korenixjetwave_2212s_firmwareMatch1.3.0

AND

korenixjetwave_2212sMatch-

Node

korenixjetwave_2211c_firmwareRange<1.6

AND

korenixjetwave_2211cMatch-

Node

korenixjetwave_2411_firmwareRange<1.5

AND

korenixjetwave_2411Match-

Node

korenixjetwave_2111_firmwareRange<1.5

AND

korenixjetwave_2111Match-

Node

korenixjetwave_2411l_firmwareRange<1.6

AND

korenixjetwave_2411lMatch-

Node

korenixjetwave_2111l_firmwareRange<1.6

AND

korenixjetwave_2111lMatch-

Node

korenixjetwave_2414_firmwareRange<1.4

AND

korenixjetwave_2414Match-

Node

korenixjetwave_2114_firmwareRange<1.4

AND

korenixjetwave_2114Match-

Node

korenixjetwave_2424_firmwareRange<1.3

AND

korenixjetwave_2414Match-

Node

korenixjetwave_2460_firmwareRange<1.6

AND

korenixjetwave_2460Match-

Node

korenixjetwave_4221hp-e__firmwareRange≤1.3.0

AND

korenixjetwave_4221hp-eMatch-

Node

korenixjetwave_3220_v3__firmwareRange<1.7

AND

korenixjetwave_3220_v3Match-

Node

korenixjetwave_3420_v3__firmwareRange<1.7

AND

korenixjetwave_3420_v3Match-

References

cyberdanube.com/en/en-multiple-vulnerabilities-in-korenix-jetwave-series/

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.7%

JSON

Related for NVD:CVE-2023-23296

cvelist1 cve1 prion1 ics1