CVE-2023-46272

high

Description

Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4 before 10.6r5, allows an attacker to execute arbitrary code via the implementation of the ah_auth service

References

https://www.zerodayinitiative.com/advisories/ZDI-23-1765/

https://extreme-networks.my.site.com/ExtrArticleDetail?an=000115355&q=CVE-2023-46272

Details

Source: Mitre, NVD

Published: 2025-02-19

Updated: 2026-04-15

Risk Information

CVSS v2

Base Score: 9.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:P

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H