CVE-2023-33227

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 1, 2023

Updated: Nov 9, 2023

CWE ID 22

Summary

CVE-2023-33227 is a critical Directory Traversal vulnerability affecting the Network Configuration Manager. This issue enables a low-level user to execute code with SYSTEM privileges by manipulating the file path input. By traversing directories, an attacker can gain unauthorized access and potentially install malicious software or make changes to critical system configurations. This vulnerability poses a significant risk to network security and requires immediate remediation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SolarWinds Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tO9uEf
https://www.cve.org/CVERecord?id=CVE-2023-33227
https://nvd.nist.gov/vuln/detail/CVE-2023-33227

Back to Vulnerability Database

CVE-2023-33227

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations