Privilege Escalation Vulnerability in Extreme Networks Switch Engine (EXOS) via Crafted Telnet Commands

Privilege Escalation Vulnerability in Extreme Networks Switch Engine (EXOS) via Crafted Telnet Commands

CVE-2023-43119 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using crafted telnet commands via Redis server.

Learn more about our Cis Benchmark Audit For Server Software.