Vulnerability Description
Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, has a buffer overflow. This issue arises from the ah_webui service, which listens on TCP port 3009 by default.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Related Weaknesses (CWE)
References
- https://extreme-networks.my.site.com/ExtrArticleDetail?an=000115354&q=CVE-2023-4
- https://extremenetworks.com
- https://www.zerodayinitiative.com/advisories/ZDI-23-1766/
FAQ
What is CVE-2023-46271?
CVE-2023-46271 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, has a buffer overflow. This issue arises from the ah_webui service, which listens on TCP port 3009 by default.
How severe is CVE-2023-46271?
CVE-2023-46271 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-46271?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.