TVN ID | TVN-202311011 |
---|---|
CVE ID | CVE-2023-41355 |
CVSS | 9.8 (Critical) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Affected Products | Chunghwa Telecom NOKIA G-040W-Q: G040WQR201207 |
Description | Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for ICMP redirect messages. An unauthenticated remote attacker can exploit this vulnerability by sending a crafted package to modify the network routing table, resulting in a denial of service or sensitive information leaking. |
Solution | Update version to 3.0.0.4.386_51948. |
Credit | Ta-Lun Yen(TXOne Networks) |
Public Date | 2023-11-03 |