Vulnerability Description
Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the implementation of the ah_auth service
CVSS Score
8.8
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Related Weaknesses (CWE)
References
- https://extreme-networks.my.site.com/ExtrArticleDetail?an=000115355&q=CVE-2023-4
- https://www.zerodayinitiative.com/advisories/ZDI-23-1765/
FAQ
What is CVE-2023-46272?
CVE-2023-46272 is a vulnerability with a CVSS score of 8.8 (HIGH). Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the implementation of the ah_auth service
How severe is CVE-2023-46272?
CVE-2023-46272 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-46272?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.