Description

Improper Authentication vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Authentication Abuse.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.

Related CPE's

a

genians

genian_nac

4

a

genians

genian_ztna

Vulnerable

References

https://docs.genians.com/nac/5.0/release/ko/advisories/GN-SA-2023-001.html

Weaknesses

[email protected]

Primary
CWE-287

[email protected]

Secondary
CWE-78

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-11T06:15:10.673

11 months ago

Last modified

2023-08-29T02:15:08.610

11 months ago