November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461]
Tags
country: | India Japan Taiwan United States Of America |
attack-pattern: | Data Software - T1592.002 Vulnerabilities - T1588.006 Connection Proxy - T1090 |
Common Information
Type | Value |
---|---|
UUID | 749bdcd5-0b9f-4ebd-b382-b91f4dd4227a |
Fingerprint | a29c2833e61078af |
Analysis status | DONE |
Considered CTI value | 1 |
Text language | |
Published | Nov. 27, 2024, 8:11 p.m. |
Added to db | Nov. 27, 2024, 9:35 p.m. |
Last updated | Dec. 11, 2024, 9:06 a.m. |
Headline | November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461] |
Title | November 27 Advisory: Actively Exploited RCE Vulnerability in Array Networks VPNs [CVE-2023-28461] |
Detected Hints/Tags/Attributes | 23/2/12 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://censys.com/cve-2023-28461/ |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 77 | ✔ | Censys | https://censys.io/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 20 | cve-2023-28461 |
|
Details | Domain | 9 | host.services |
|
Details | Domain | 656 | nvd.nist.gov |
|
Details | Domain | 610 | www.trendmicro.com |
|
Details | File | 29 | tls.cer |
|
Details | File | 18 | response.html |
|
Details | File | 2 | lodeinfo-campaign-of-earth-kasha.html |
|
Details | File | 1 | array_networks_security_advisory_for_remote_code_execution_vulnerability_ag.pdf |
|
Details | Url | 1 | https://nvd.nist.gov/vuln/detail/cve-2023-28461 |
|
Details | Url | 1 | https://www.securityweek.com/chinese-hackers-exploiting-critical-vulnerability-in-array-networks-gateways |
|
Details | Url | 2 | https://www.trendmicro.com/en_us/research/24/k/lodeinfo-campaign-of-earth-kasha.html |
|
Details | Url | 1 | https://support.arraynetworks.net/prx/001/http/supportportal.arraynetworks.net/documentation/fieldnotice/array_networks_security_advisory_for_remote_code_execution_vulnerability_ag.pdf |