CVE-2023-7094 | Netentsec NS-ASG Application Security Gateway 6.3 /protocol/nsasg6.0.tgz information disclosure

Inserito da Angelo Barbosa | Dic 24, 2023 | CVE

A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected by this vulnerability is an unknown functionality of the file /protocol/nsasg6.0.tgz. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2023-7094. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

It is recommended to apply restrictive firewalling.

CVE-2023-7094 | Netentsec NS-ASG Application Security Gateway 6.3 /protocol/nsasg6.0.tgz information disclosure

Post correlati

CVE-2023-32259 | OpenText Service Management Automation/Asset Management X insufficient granularity of access control

CVE-2024-2248 | JFrog Artifactory URL injection

CVE-2023-28865 | Diebold Nixdorf Vynamic Security Suite up to 3.3.0 SR14/4.0.0 SR04/4.1.0 SR02/4.2.0 SR01 Pre-Boot Authorization improper authorization

CVE-2023-50222 | Inductive Automation Ignition Notifications ResponseParser deserialization