CVE-2023-28460
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-28460
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A command injection vulnerability was discovered in Array Networks APV products. A remote attacker can send a crafted packet after logging into the affected appliance as an administrator, resulting in arbitrary shell code execution. This is fixed in 8.6.1.262 or newer and 10.4.2.93 or newer.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Array Networks APV products 命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Array Networks APV products是美国安瑞科技(Array Networks)公司的一系列阵列负载平衡和应用程序交付产品。提供了保持应用程序在其功率带中运行所必需的可用性、可扩展性、性能、安全性和控制。 Array Networks APV存在安全漏洞。攻击者利用该漏洞以管理员身份登录受影响的设备后发送特制的数据包,从而执行任意shell代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2023-28460
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-28460
请登录查看更多情报信息。
Same Patch Batch · n/a · 2023-03-15 · 34 CVEs total
| CVE-2023-1415 | 6.3 MEDIUM | Simple Art Gallery adminHome.php sliderPicSubmit unrestricted upload |
| CVE-2023-1416 | 6.3 MEDIUM | Simple Art Gallery adminHome.php sql injection |
| CVE-2023-26084 | AArch64cryptolib 路径遍历漏洞 | |
| CVE-2023-28461 | Array Networks ArrayOS AG 授权问题漏洞 | |
| CVE-2023-26912 | xenv S-mall-ssm 跨站脚本漏洞 | |
| CVE-2023-27102 | Libde265 代码问题漏洞 | |
| CVE-2023-27103 | Libde265 缓冲区错误漏洞 | |
| CVE-2023-27234 | JIZHICMS 跨站请求伪造漏洞 | |
| CVE-2023-27235 | JIZHICMS 代码问题漏洞 | |
| CVE-2023-27239 | Tenda AX3 缓冲区错误漏洞 | |
| CVE-2023-27240 | Tenda AX3 命令注入漏洞 | |
| CVE-2023-27757 | PerfreeBlog 代码问题漏洞 | |
| CVE-2023-27781 | JPEGOPTIM 缓冲区错误漏洞 | |
| CVE-2023-28337 | NETGEAR RAX30 代码问题漏洞 | |
| CVE-2023-28338 | NETGEAR RAX30 安全漏洞 | |
| CVE-2023-28371 | Stellarium 路径遍历漏洞 | |
| CVE-2023-28450 | dnsmasq 安全漏洞 | |
| CVE-2023-25345 | swig 路径遍历漏洞 | |
| CVE-2023-25344 | swig 安全漏洞 | |
| CVE-2023-25282 | D-Link DIR820LA1 缓冲区错误漏洞 |
Showing top 20 of 34 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2023-28460
No comments yet