CVE-2023-38321
published 2023-12-25CVE-2023-38321: OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference…
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.10%
61.6th percentile
OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string parameter and client-token.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | opennds | < opennds 10.2.0+dfsg-1 (forky) | opennds 10.2.0+dfsg-1 (forky) |
| opennds | opennds | >= 0 < 10.2.0+dfsg-1 | 10.2.0+dfsg-1 |
| opennds | opennds | >= 0 < 10.2.0+dfsg-1 | 10.2.0+dfsg-1 |
| sierrawireless | aleos | < 4.17.0.12 | 4.17.0.12 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2023-38321: opennds - OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, a...
vendor_debian·2023·CVSS 7.5
CVE-2023-38321 [HIGH] CVE-2023-38321: opennds - OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, a...
OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string parameter and client-token.
Scope: local
bookworm: open
forky: resolved (fixed in 10.2.0+dfsg-1)
sid: resolved (fixed in 10.2.0+dfsg-1)
trixie: resolved (fixed in 10.2.0+dfsg-1)
GHSA
GHSA-7246-m99m-q4pq: OpenNDS, as used in Sierra Wireless ALEOS before 4
ghsa_unreviewed·2023-12-25
CVE-2023-38321 [HIGH] CWE-476 GHSA-7246-m99m-q4pq: OpenNDS, as used in Sierra Wireless ALEOS before 4
OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string parameter and client-token.
OSV
CVE-2023-38321: OpenNDS, as used in Sierra Wireless ALEOS before 4
osv·2023-12-25·CVSS 7.5
CVE-2023-38321 [HIGH] CVE-2023-38321: OpenNDS, as used in Sierra Wireless ALEOS before 4
OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string parameter and client-token.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/openNDS/openNDS/blob/master/ChangeLoghttps://openwrt.org/docs/guide-user/services/captive-portal/openndshttps://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashxhttps://github.com/openNDS/openNDS/blob/master/ChangeLoghttps://openwrt.org/docs/guide-user/services/captive-portal/openndshttps://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
2023-12-25
Published