CVE-2023-33270

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 3, 2023

Updated: Oct 4, 2023

CWE ID 78

Summary

CVE-2023-33270 is a newly identified vulnerability affecting DTS Monitoring version 3.57.0. The issue lies in the Curl check function where the url parameter is susceptible to OS command injection, allowing an attacker to execute arbitrary commands blindly. This can lead to serious security consequences if exploited, including unauthorized access, data theft, and system compromise. Users are advised to update to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Digital Thtr Sys

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sEov5Y
https://www.cve.org/CVERecord?id=CVE-2023-33270
https://nvd.nist.gov/vuln/detail/CVE-2023-33270

Back to Vulnerability Database

CVE-2023-33270

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations