CVE-2023-3607

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 10, 2023
Updated: May 17, 2024
CWE ID 89

Summary

CVE-2023-3607 is a critical vulnerability affecting the WebConsole Plug-In's webconsole.php.txt file in kodbox version 1.26. The issue allows for os command injection through the function Execute. This vulnerability was disclosed to the public and exploit code is available, making it a significant security concern. No response was received from the vendor regarding this disclosure before it went public.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share