Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-32649
HistorySep 19, 2023 - 11:16 a.m.

Input validation

2023-09-1911:16:00
PRIOn knowledge base
www.prio-n.com
3
input validation
denial of service
nozomi networks
guardian
cmc
asset intelligence
ids
network packets
network traffic analysis

0.001 Low

EPSS

Percentile

20.8%

JSON

A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, allows an unauthenticated attacker to crash the IDS module by sending specially crafted malformed network packets.

During the (limited) time window before the IDS module is automatically restarted, network traffic may not be analyzed.

Related

cvelist 1
cve 1
nvd 1
ics 1
cvelist
cvelist
CVE-2023-32649 DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0
2023-09-19 10:06:15
cve
cve
CVE-2023-32649
2023-09-19 11:16:20
nvd
nvd
CVE-2023-32649
2023-09-19 11:16:20
ics
ics
Siemens RUGGEDCOM APE1808 Devices
2023-11-16 12:00:00

0.001 Low

EPSS

Percentile

20.8%

JSON
Related for PRION:CVE-2023-32649
cvelist1cve1nvd1ics1