CVE-2023-37289

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 20, 2023

Updated: Jul 28, 2023

CWE ID 434

Summary

CVE-2023-37289 is a newly identified vulnerability affecting the InfoDoc Document On-line Submission and Approval System. This issue permits unauthenticated attackers to upload dangerous file types, bypassing restrictions, and potentially execute arbitrary system commands or disrupt services. The vulnerability exists in the file uploading function of the affected systems, which are identified as Document On-line Submission and Approval System versions 22547 and 22567.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r1S4_V
https://www.cve.org/CVERecord?id=CVE-2023-37289
https://nvd.nist.gov/vuln/detail/CVE-2023-37289

Back to Vulnerability Database

CVE-2023-37289

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations