CVE-2023-33831

Sažetak

A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request.

Reference

https://youtu.be/Xxa6yRB2Fpw
https://github.com/rodolfomarianocy/Unauthenticated-RCE-FUXA-CVE-2023-33831

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

19-09-2023 - 03:37

Objavljeno

18-09-2023 - 20:15