CVE-2023-33227

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 1, 2023
Updated: Nov 9, 2023
CWE ID 22

Summary

CVE-2023-33227 is a critical Directory Traversal vulnerability affecting the Network Configuration Manager. This issue enables a low-level user to execute code with SYSTEM privileges by manipulating the file path input. By traversing directories, an attacker can gain unauthorized access and potentially install malicious software or make changes to critical system configurations. This vulnerability poses a significant risk to network security and requires immediate remediation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share