cbcvebase.
CVE-2023-28126
published 2023-05-09

CVE-2023-28126: An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to gain access by exploiting the SetUser…

PriorityP355medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
EPSS
66.66%
99.2th percentile
An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to gain access by exploiting the SetUser method or can exploit the Race Condition in the authentication message.

Affected

2 ranges
VendorProductVersion rangeFixed in
ivantiavalanche<= 6.3.4.153
ivantiavalanche

Detection & IOCsextracted from sources · hover to see the quote

  • Monitor for exploitation of the SetUser method in Avalanche versions 6.3.x and below, which may indicate an authentication bypass attempt
  • ·Vulnerability affects Avalanche versions 6.3.x and below; patch or upgrade beyond 6.3.x to remediate
  • ·Two distinct attack vectors exist: abuse of the SetUser method and a race condition in the authentication message flow (CWE-305, CWE-362)
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.