CVE-2023-41783
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Jan 3, 2024
Updated: Jan 9, 2024
CWE ID 94
Summary
CVE-2023-41783 is a command injection vulnerability affecting ZTE's ZXCLOUD iRAI. The issue stems from the software's inability to properly validate user input, resulting in an attacker being able to inject malicious commands. Successful exploitation could lead to the escalation of local privileges, posing a significant threat to system security.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- ZTE Corporation