CVE-2023-41355

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 3, 2023
Updated: Nov 13, 2023
CWE ID 20

Summary

CVE-2023-41355 is a vulnerability affecting the Chunghwa Telecom NOKIA G-040W-Q Firewall. The issue lies in the input validation process for ICMP redirect messages. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted package. The consequence of successful exploitation can result in a denial of service or sensitive information leakage. The vulnerability puts network routing tables at risk and underscores the importance of proper input validation in network security.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share