CVE-2023-46272

Published Feb 19, 2025

Last updated 3 months ago

CVSS high 8.8

Overview

Description
Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the implementation of the ah_auth service
Source
cve@mitre.org
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.8
Impact score
5.9
Exploitability score
2.8
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-121

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2023-46272 🔴 HIGH (8.8) 🏢 Unknown Vendor - Unknown Product 🏗️ Unknown Version 🔗 https://t.co/nnsGZvMner 🔗 https://t.co/b5KcO0gMGQ #CyberCron #VulnAlert https://t.co/qZQECfBIYc

    @cybercronai

    21 Feb 2025

    35 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    1 Quote

  2. CVE-2023-46272 Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the imp… https://t.co/6groiIkSya

    @CVEnew

    19 Feb 2025

    371 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.