A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, allows an unauthenticated attacker to crash the IDS module by sending specially crafted malformed network packets.
During the (limited) time window before the IDS module is automatically restarted, network traffic may not be analyzed.
References
Link | Resource |
---|---|
https://security.nozominetworks.com/NN-2023:10-01 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Nozomi
Published: 2023-09-19T10:06:15.601Z
Updated: 2024-05-28T12:10:02.631Z
Reserved: 2023-06-12T09:20:58.638Z
Link: CVE-2023-32649
JSON object: View
NVD Information
Status : Modified
Published: 2023-09-19T11:16:20.297
Modified: 2024-05-28T13:15:09.970
Link: CVE-2023-32649
JSON object: View
Redhat Information
No data.
CWE