CVE-2023-32649
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Sep 19, 2023
Updated: May 28, 2024
CWE ID 20
Summary
CVE-2023-32649 is a Denial of Service (DoS) vulnerability affecting Nozomi Networks Guardian and CMC. This issue arises due to insufficient input validation in specific fields utilized in the Asset Intelligence functionality of the IDS system. An unauthenticated attacker can exploit this vulnerability by transmitting malformed network packets, causing the IDS module to crash. The vulnerability results in a temporary disruption of network traffic analysis, leaving a brief window of opportunity for potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Nozomi Networks Guardian
Affected Vendors
- Nozomi Networks