Platform
other
Component
a10-thunder-adc
Fixed in
5.2.2
CVE-2023-42130 is a directory traversal vulnerability discovered in A10 Thunder ADC. This flaw allows authenticated remote attackers to read and delete arbitrary files on the affected system, potentially leading to data breaches and system compromise. The vulnerability impacts versions 5.2.1-p3 and build 70. A fix is available from A10 Networks.
Successful exploitation of CVE-2023-42130 allows an attacker to bypass access controls and directly manipulate files on the Thunder ADC appliance. This includes sensitive configuration files, user credentials, and potentially application data. The ability to delete files could lead to denial of service or further compromise the system. Given the ADC's role in managing network traffic and application delivery, a successful attack could have a significant impact on the availability and integrity of services. The requirement for authentication limits the immediate blast radius, but a compromised user account could be leveraged to exploit this vulnerability.
CVE-2023-42130 was publicly disclosed on May 3, 2024. While no active exploitation campaigns have been publicly confirmed, the vulnerability's ease of exploitation and the potential impact make it a likely target. The vulnerability was initially reported to ZDI as ZDI-CAN-17905. The CVSS score of 8.3 (HIGH) indicates a significant risk, and it is recommended to prioritize remediation.
Exploit Status
EPSS
11.31% (94% percentile)
CISA SSVC
CVSS Vector
The primary mitigation for CVE-2023-42130 is to upgrade to a patched version of A10 Thunder ADC. Refer to the A10 Networks advisory for the specific fixed version. If immediate patching is not possible, consider implementing stricter access controls to limit the number of authenticated users with access to the FileMgmtExport functionality. While a direct WAF rule is difficult to implement due to the nature of directory traversal, carefully reviewing and restricting file access permissions can reduce the attack surface. Monitor system logs for unusual file access patterns or deletion attempts.
Actualice A10 Thunder ADC a una versión que no sea vulnerable. Consulte el aviso de seguridad del proveedor para obtener más información y las versiones corregidas.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2023-42130 is a directory traversal vulnerability in A10 Thunder ADC that allows authenticated attackers to read and delete arbitrary files.
You are affected if you are running A10 Thunder ADC versions 5.2.1-p3 or build 70 and have not upgraded to a patched version.
Upgrade to a patched version of A10 Thunder ADC as recommended by A10 Networks. Refer to their advisory for specific version details.
While no active exploitation campaigns have been publicly confirmed, the vulnerability's ease of exploitation makes it a potential target.
Refer to the A10 Networks security advisory page for the latest information and patched versions.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.