HIGH✓ PATCH🇬🇧 English

CVE-2023-33235

CVSS 7.2v3.1pub. 2023-05-22upd. 2024-11-21

MXsecurity version 1.0 is vulnearble to command injection vulnerability. This vulnerability has been reported in the SSH CLI program, which can be exploited by attackers who have gained authorization privileges. The attackers can break out of the restricted shell and subsequently execute arbitrary code.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Moxa Mxsecurity

    APP
    Moxa
    1.0
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2023-39979CRITICAL9.8ten sam produkt

There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication....

CVE-2023-33236CRITICAL9.8ten sam produkt

MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been report...

CVE-2023-39981HIGH7.5ten sam produkt

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1...

CVE-2023-39982HIGH7.5ten sam produkt

A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the conf...

CVE-2023-39980HIGH7.1ten sam produkt

A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MX...

CVE-2023-33235 — HIGH 7.2 | CVEbaza.pl