Vulnerabilities > CVE-2023-43119 - Incorrect Authorization vulnerability in Extremenetworks Exos 31.7.0/31.7.1/32.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using crafted telnet commands via Redis server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 4 |