← volver
CVE-2023-24546

CVE-2023-24546

CVSS 8.1 HIGHEPSS 0.5%CWE-284
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.1EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
13 jun 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
On affected versions of the CloudVision Portal improper access controls on the connection from devices to CloudVision could enable a malicious actor with network access to CloudVision to get broader access to telemetry and configuration data within the system than intended. This advisory impacts the Arista CloudVision Portal product when run on-premise. It does not impact CloudVision as-a-Service.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Productos afectados
n/a · CloudVision