CVE-2023-44824
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-44824 is a vulnerability affecting the Expense Management System v.1.0. This issue enables a local attacker to upload a malicious file to the sign-up.php component, exploiting it to execute arbitrary code. The vulnerability poses a significant risk, as an attacker can leverage this exploit for unauthorized system access, data theft, or other malicious activities. The Expense Management System's developer is advised to release a patch as soon as possible to mitigate this threat. Users are encouraged to update their systems promptly to protect against potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.