Security Advisory

CVE-2023-34998

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-05 16:15:05
Last updated 2025-02-13 16:55:42
Assigner talos
State PUBLISHED

Description

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary authentication. An attacker can sniff network traffic to trigger this vulnerability.