CVE-2024-0218
Published: 10 April 2024
Summary
CVE-2024-0218 is a high-severity Improper Validation of Syntactic Correctness of Input (CWE-1286) vulnerability in Nozominetworks (inferred from references). Its CVSS base score is 8.2 (High).
Operationally, ranked at the 32.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-16017
Vulnerability details
A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian, caused by improper input validation in certain fields used in the Radius parsing functionality of our IDS, allows an unauthenticated attacker sending specially crafted malformed network packets to cause the…
more
IDS module to stop updating nodes, links, and assets. Network traffic may not be analyzed until the IDS module is restarted.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.