CVE-2023-42362

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 14, 2023

Updated: Sep 19, 2023

CWE ID 79

Summary

CVE-2023-42362 is a newly disclosed vulnerability affecting Teller Web App version 4.4.0. An attacker can exploit this arbitrary file upload vulnerability to execute arbitrary commands and gain unauthorized access to sensitive information by carefully crafting and uploading a file. This vulnerability poses a significant risk, as it allows remote attackers to bypass security restrictions and potentially take control of affected systems. It is crucial that users upgrade to a patched version of Teller Web App as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Teller

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/snxmrw
https://www.cve.org/CVERecord?id=CVE-2023-42362
https://nvd.nist.gov/vuln/detail/CVE-2023-42362

Back to Vulnerability Database

CVE-2023-42362

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations