CVE-2023-33376

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 4, 2023

Updated: Aug 8, 2023

CWE ID 88

Summary

CVE-2023-33376 is a vulnerability affecting Connected IO version 2.1.0 and earlier. This issue involves an argument injection flaw in the iptables command message of its communication protocol. Attackers can exploit this vulnerability to execute arbitrary OS commands on targeted devices, posing a significant security risk. Impacted systems must be updated to mitigate this vulnerability and prevent potential unauthorized system access or compromise.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sOPnoW
https://www.cve.org/CVERecord?id=CVE-2023-33376
https://nvd.nist.gov/vuln/detail/CVE-2023-33376

Back to Vulnerability Database

CVE-2023-33376

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations