CVE-2023-33271

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 3, 2023

Updated: Oct 4, 2023

CWE ID 78

Summary

CVE-2023-33271 is a newly disclosed vulnerability affecting DTS Monitoring version 3.57.0. The flaw lies within the SSL Certificate check function, allowing an attacker to inject OS commands through the common_name parameter in a blind manner. This vulnerability poses a significant risk, as successful exploitation could result in unauthorized system access, data theft, or other malicious activities. Users are strongly urged to apply the appropriate patch or update to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Digital Thtr Sys

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sEov5V
https://www.cve.org/CVERecord?id=CVE-2023-33271
https://nvd.nist.gov/vuln/detail/CVE-2023-33271

Back to Vulnerability Database

CVE-2023-33271

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations