CVE-2023-28461CISA KEVEPSS p99.2%

CVE-2023-28461Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability

Array Networks / AG/vxAG ArrayOS

Description

Array Networks AG and vxAG ArrayOS contain a missing authentication for critical function vulnerability that allows an attacker to read local files and execute code on the SSL VPN gateway.

Scoring

EPSS67.64% probability of exploitation · percentile 99.2% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2024-11-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryArray Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerabilitykev-cve-2023-284610%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Array Networks ArrayOS AG OS Command Injection Vulnerability
CVE
F5 BIG-IP Missing Authentication Vulnerability
CVE
CVE-2023-5502
CVE
Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability
CVE
SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
CVE
CVE-2026-23814
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.