CVE-2023-39548

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 17, 2023

Updated: Dec 28, 2023

CWE ID 434

Summary

CVE-2023-39548 is a vulnerability affecting CLUSTERPRO X Ver5.1 and earlier, EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, and EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier. This issue allows an attacker to gain unauthorized login access and execute arbitrary commands on the product. Successful exploitation could result in significant data loss or unauthorized system modifications. Users are urged to update their software to the latest stable version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NEC ExpressCluster X

Affected Vendors

NEC Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sOKr8x
https://www.cve.org/CVERecord?id=CVE-2023-39548
https://nvd.nist.gov/vuln/detail/CVE-2023-39548

Back to Vulnerability Database