Code injection

2023-08-1707:15:00

PRIOn knowledge base

www.prio-n.com

code injection

genians genian nac

genian nac v4.0

genian nac v5.0

genian nac suite v5.0

genian ztna

replace trusted executable

security vulnerability

9.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.0%

JSON

Improper Control of Generation of Code (‘Code Injection’) vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Replace Trusted Executable.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.

CPENameOperatorVersion
genian_nacge4.0.0
genian_naclt4.0.156
genian_naceq5.0.42 revision-117460
genian_naceq5.0.42
genian_nacge5.0.0
genian_naclt5.0.55
genian_ztnage6.0.0
genian_ztnalt6.0.16

Name	Operator	Version
genian_nac	ge	4.0.0
genian_nac	lt	4.0.156
genian_nac	eq	5.0.42 revision-117460
genian_nac	eq	5.0.42
genian_nac	ge	5.0.0
genian_nac	lt	5.0.55
genian_ztna	ge	6.0.0
genian_ztna	lt	6.0.16

References

docs.genians.com/nac/5.0/release/ko/advisories/GN-SA-2023-001.html