CVE-2023-43322

CVE-2023-43322 affects ZPE Systems Nodegrid OS versions 5.0.0–5.0.17, 5.2.0–5.2.19, 5.4.0–5.4.16, 5.6.0–5.6.13, 5.8.0–5.8.10, and 5.10.0–5.10.3, with a command injection via /v1/system/toolkit/files/. Root cause: command injection; CVSS v3.1 base score 8.8 (HIGH) with NETWORK attack vector, LOW a...

CVE-2023-44037

CVE-2023-44037 concerns ZPE Systems Nodegrid OS, affecting versions 5.8.10–5.8.13 and 5.10.3–5.10.5. The issue originates in the TACACS+ server component and enables a remote attacker to obtain sensitive information. Public sources in the connected set specify the affected ranges and describe the...