| TVN ID | TVN-202311011 |
|---|---|
| CVE ID | CVE-2023-41355 |
| CVSS | 9.8 (Critical) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Affected Products | Chunghwa Telecom NOKIA G-040W-Q: G040WQR201207 |
| Description | Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for ICMP redirect messages. An unauthenticated remote attacker can exploit this vulnerability by sending a crafted package to modify the network routing table, resulting in a denial of service or sensitive information leaking. |
| Solution | Update version to 3.0.0.4.386_51948. |
| Credit | Ta-Lun Yen(TXOne Networks) |
| Public Date | 2023-11-03 |
:::