CVE-2024-0218

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Nozomi Networks Guardian (affected versions not specified)

Description A Denial of Service (DoS) issue is caused by improper input validation in certain fields used in the Radius parsing functionality of the IDS. This allows an unauthenticated attacker to send specially crafted malformed network packets, causing the IDS module to stop updating nodes, links, and assets. As a result, network traffic may not be analyzed until the IDS module is restarted.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1286CWE-20

Related Identifiers

BDU:2024-04597

CVE-2024-0218

Affected Products

Nozomi Networks Guardian

CVE-2024-0218

Weakness Enumeration

Related Identifiers

Affected Products

References · 7