Vulnerabilities > CVE-2023-24015 - Unspecified vulnerability in Nozominetworks CMC and Guardian

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

nozominetworks

NVD

Published: 2023-08-09

Updated: 2023-08-16

Summary

A partial DoS vulnerability has been detected in the Reports section, exploitable by a malicious authenticated user forcing a report to be saved with its name set as null. The reports section will be partially unavailable for all later attempts to use it, with the report list seemingly stuck on loading.

Vulnerable Configurations

Part	Description	Count
Application	Nozominetworks Nozominetworks CMC 22.0.0 Nozominetworks CMC 22.5.2 Nozominetworks Guardian 19.0.4 Nozominetworks Guardian 22.0.0 Nozominetworks Guardian 22.5.2	5

References

https://security.nozominetworks.com/NN-2023:6-01