CVE-2023-43121

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 16, 2023

Updated: Oct 27, 2023

CWE ID 22

Summary

CVE-2023-43121 is a newly disclosed Directory Traversal vulnerability that affects the Chalet application in Extreme Networks Switch Engine (EXOS) versions prior to 32.5.1.5, 22.7, and 31.7.2. This issue enables attackers to read arbitrary files, potentially exposing sensitive information stored on the affected systems. Exploitation of this vulnerability could lead to significant data breaches, making it crucial for organizations using the affected EXOS versions to apply the necessary patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Extreme Networks

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/st8buW
https://www.cve.org/CVERecord?id=CVE-2023-43121
https://nvd.nist.gov/vuln/detail/CVE-2023-43121

Back to Vulnerability Database

CVE-2023-43121

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations