CVE-2023-4120

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Aug 3, 2023
Updated: May 17, 2024
CWE ID 77

Summary

CVE-2023-4120 is a critical vulnerability found in Byzoro Smart S85F Management Platform up to 20230722. The vulnerability is classified as a command injection issue resulting from the manipulation of the argument sql in the file importhtml.php. It can be exploited remotely and has been disclosed to the public. The associated identifier for this vulnerability is VDB-235967. The vendor was contacted regarding this disclosure but did not respond.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-4120 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options