CVE-2023-41631

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 17, 2023

Updated: Oct 23, 2023

CWE ID 434

Summary

CVE-2023-41631: A remote code execution (RCE) vulnerability has been identified in eSST Monitoring v2.147.1. Maliciously crafted files uploaded to the application can be executed on the server, allowing unauthorized attackers to gain control and execute arbitrary code. This vulnerability poses a significant risk and requires immediate attention from users, as successful exploitation could lead to serious security breaches. It is recommended that users upgrade to the latest version of eSST Monitoring to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ESST

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sgKiRD
https://www.cve.org/CVERecord?id=CVE-2023-41631
https://nvd.nist.gov/vuln/detail/CVE-2023-41631

Back to Vulnerability Database

CVE-2023-41631

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations