CVE-2023-24517
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Aug 22, 2023
Updated: Nov 2, 2023
CWE ID 434
Summary
CVE-2023-24517 is a critical vulnerability affecting the Pandora FMS File Manager component. This issue enables an attacker to upload files of dangerous types unrestrictedly, potentially leading to the execution of arbitrary system commands. The impacted versions include Pandora FMS v767 and earlier releases, making all platforms vulnerable to this exploit.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Pandorafms Pandora Fms