CVE-2023-40252: CVE-2023-40252

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-40252

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Improper Control of Generation of Code ('Code Injection') vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Replace Trusted Executable.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

对生成代码的控制不恰当(代码注入)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Genians Genian NAC 代码注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Genians Genian NAC是韩国Genians公司的一款网络安全和访问控制软件。可帮助企业识别启用 IP 的设备、管理漏洞并检查设备配置以保护网络访问环境。 Genians Genian NAC存在安全漏洞，该漏洞源于存在代码注入漏洞，允许替换受信任的可执行文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Genians	Genian NAC V4.0	V4.0.0 ~ V4.0.155	-
Genians	Genian NAC V5.0	V5.0.0 ~ V5.0.42 (Revision 117460)	-
Genians	Genian NAC Suite V5.0	V5.0.0 ~ V5.0.54	-
Genians	Genian ZTNA	V6.0.0 ~ V6.0.15	-

II. Public POCs for CVE-2023-40252

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-40252

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: Genian NAC V4.0

Same vendor: Genians

Same weakness: CWE-94

V. Comments for CVE-2023-40252

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2023-40252

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-40252

III. Intelligence Information for CVE-2023-40252

IV. Related Vulnerabilities

V. Comments for CVE-2023-40252

Leave a comment