CVE-2023-32649

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 19, 2023
Updated: May 28, 2024
CWE ID 20

Summary

CVE-2023-32649 is a Denial of Service (DoS) vulnerability affecting Nozomi Networks Guardian and CMC. This issue arises due to insufficient input validation in specific fields utilized in the Asset Intelligence functionality of the IDS system. An unauthenticated attacker can exploit this vulnerability by transmitting malformed network packets, causing the IDS module to crash. The vulnerability results in a temporary disruption of network traffic analysis, leaving a brief window of opportunity for potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Nozomi Networks Guardian

Affected Vendors

  • Nozomi Networks