Arrayos Ag Security Vulnerabilities and Issues — Arrayos Ag CVE List

Lucene search

ArraynetworksArrayos Ag

5 matches found

CVE•added 2023/03/15 11:15 p.m.•183 views

CVE-2023-28461

Array Networks Array AG Series and vxAG (9.4.0.481 and earlier) allow remote code execution. An attacker can browse the filesystem on the SSL VPN gateway using a flags attribute in an HTTP header without authentication. The product could then be exploited through a vulnerable URL. The 2023-03-09 ve...

9.8CVSS9.6AI score0.89761EPSS

CVE•added 2023/02/03 2:15 a.m.•46 views

CVE-2023-24613

The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend bi...

4.9CVSS5AI score0.00283EPSS

CVE•added 2023/12/22 2:15 a.m.•45 views

CVE-2023-51707

MotionPro in Array ArrayOS AG before 9.4.0.505 on AG and vxAG allows remote command execution via crafted packets. AG and vxAG 9.3.0.259.x are unaffected.

9.8CVSS9.5AI score0.02631EPSS

CVE•added 2022/10/13 12:15 a.m.•39 views

CVE-2022-42897

Array Networks AG/vxAG with ArrayOS AG before 9.4.0.469 allows unauthenticated command injection that leads to privilege escalation and control of the system. NOTE: ArrayOS AG 10.x is unaffected.

9.8CVSS10AI score0.01503EPSS

CVE•added 2023/08/25 10:15 p.m.•35 views

CVE-2023-41121

Array AG OS before 9.4.0.499 allows denial of service: remote attackers can cause system service processes to crash through abnormal HTTP operations.

7.5CVSS7.5AI score0.00682EPSS