CVE-2023-49830

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 29, 2023

Updated: Jan 5, 2024

CWE ID 94

Summary

CVE-2023-49830 is a Code Injection vulnerability affecting Brainstorm Force's Astra Pro from versions n/a through 4.3.1. An attacker can exploit this issue to inject malicious code, potentially taking control of affected systems and causing significant damage. This vulnerability arises due to improper controls in the code generation process. Users are advised to update to the latest version of Astra Pro to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Brainstorm Force

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/toP72b
https://www.cve.org/CVERecord?id=CVE-2023-49830
https://nvd.nist.gov/vuln/detail/CVE-2023-49830

Back to Vulnerability Database

CVE-2023-49830

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations