CVE-2023-41630

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 17, 2023

Updated: Oct 23, 2023

CWE ID 94

Summary

CVE-2023-41630 is a newly disclosed vulnerability affecting eSST Monitoring version 2.147.1. This issue permits an attacker to execute remote code through the Gii code generator component, potentially leading to serious security consequences. An attacker could exploit this vulnerability by sending specially crafted requests to an affected system, allowing them to gain control and execute arbitrary code. System administrators are strongly advised to update their installations to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ESST

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sgKiRF
https://www.cve.org/CVERecord?id=CVE-2023-41630
https://nvd.nist.gov/vuln/detail/CVE-2023-41630

Back to Vulnerability Database

CVE-2023-41630

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations