CVE-2023-6631

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 8, 2024

Updated: Jan 11, 2024

CWE ID 428

Summary

CVE-2023-6631 is a vulnerability affecting PowerSYSTEM Center versions 2020 Update 16 and earlier. An authorized local user can exploit this issue by inserting arbitrary code into an unquoted service path, potentially escalating privileges. This vulnerability poses a risk for malicious actors to gain elevated access and compromise the affected system. Organizations using the identified versions of PowerSYSTEM Center are strongly advised to apply the available patches as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SUBNET PowerSYSTEM Center

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tvTSun
https://www.cve.org/CVERecord?id=CVE-2023-6631
https://nvd.nist.gov/vuln/detail/CVE-2023-6631

Back to Vulnerability Database

CVE-2023-6631

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations