CVE-2023-3232

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jun 14, 2023

Updated: May 17, 2024

CWE ID 122

CWE ID 787

Summary

CVE-2023-3232 is a newly disclosed critical vulnerability affecting the Zhong Bang CRMEB software up to version 4.6.0. The issue lies in the processing of the /api/wechat/app_auth file in the Image Upload component, which can result in deserialization. This vulnerability has been made public, increasing the risk of exploitation. The associated identifier for this issue is VDB-231503. Unfortunately, the vendor was not responsive when notified about the disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

OpenPrinting CUPS
Debian

Affected Vendors

Debian

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rdpbbR
https://www.cve.org/CVERecord?id=CVE-2023-3232
https://nvd.nist.gov/vuln/detail/CVE-2023-3232

Back to Vulnerability Database