CVE-2023-36630
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Jun 25, 2023
Updated: Jul 3, 2023
CWE ID 434
Summary
CVE-2023-36630 is a vulnerability affecting the CloudPanel software before version 2.3.1. A flaw in the file upload functionality allows for insecure file uploads, granting attackers the ability to escalate privileges and bypass authentication. Successful exploitation could result in unauthorized access and control over affected systems. Users are advised to upgrade to the latest version of CloudPanel to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share