CVE-2023-41009

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 5, 2023

Updated: Sep 8, 2023

CWE ID 434

Summary

CVE-2023-41009 is a file upload vulnerability affecting the adlered bolo-solo version 2.6. An attacker can exploit this weakness by submitting a maliciously crafted script as the authorization field in the header during the file upload process. Successful exploitation of this vulnerability allows the attacker to execute arbitrary code remotely. This issue poses a significant risk to systems using the affected version of adlered bolo-solo and requires immediate attention and remediation from administrators.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbM2D9
https://www.cve.org/CVERecord?id=CVE-2023-41009
https://nvd.nist.gov/vuln/detail/CVE-2023-41009

Back to Vulnerability Database

CVE-2023-41009

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations