PT-2023-28706 · Extreme Networks · Extreme Networks Switch Engine
David Yesland
·
Published
2023-10-16
·
Updated
2023-12-09
·
CVE-2023-43121
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Extreme Networks Switch Engine (EXOS) versions prior to 32.5.1.5
Extreme Networks Switch Engine (EXOS) versions prior to 22.7
Extreme Networks Switch Engine (EXOS) versions prior to 31.7.2
Description
A Directory Traversal issue allows attackers to read arbitrary files.
Recommendations
For versions prior to 32.5.1.5, update to version 32.5.1.5 or later.
For versions prior to 22.7, update to version 22.7 or later.
For versions prior to 31.7.2, update to version 31.7.2 or later.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Extreme Networks Switch Engine