November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461]
Tags
country: India Japan Taiwan United States Of America
attack-pattern: Data Software - T1592.002 Vulnerabilities - T1588.006 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID 749bdcd5-0b9f-4ebd-b382-b91f4dd4227a
Fingerprint a29c2833e61078af
Analysis status DONE
Considered CTI value 1
Text language
Published Nov. 27, 2024, 8:11 p.m.
Added to db Nov. 27, 2024, 9:35 p.m.
Last updated Dec. 18, 2024, 3:29 a.m.
Headline November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461]
Title November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461]
Detected Hints/Tags/Attributes 23/2/12
Source URLs
Redirection Url
Details Source https://censys.com/cve-2023-28461/
URL Provider
Details Provider Source level domain
Details censys.com censys.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 77 Censys https://censys.io/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 20 
cve-2023-28461
Details Domain 10 
host.services
Details Domain 660 
nvd.nist.gov
Details Domain 614 
www.trendmicro.com
Details File 29 
tls.cer
Details File 19 
response.html
Details File 2 
lodeinfo-campaign-of-earth-kasha.html
Details File 1 
array_networks_security_advisory_for_remote_code_execution_vulnerability_ag.pdf
Details Url 1 
https://nvd.nist.gov/vuln/detail/cve-2023-28461
Details Url 1 
https://www.securityweek.com/chinese-hackers-exploiting-critical-vulnerability-in-array-networks-gateways
Details Url 2 
https://www.trendmicro.com/en_us/research/24/k/lodeinfo-campaign-of-earth-kasha.html
Details Url 1 
https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/fieldnotice/array_networks_security_advisory_for_remote_code_execution_vulnerability_ag.pdf