CVSS 3.1 Score 9.8 of 10 (high)


Published Dec 15, 2023
Updated: Dec 22, 2023
CWE ID 434


CVE-2023-48371 is a cyber vulnerability that affects the ITPison OMICARD EDM's file uploading function. This vulnerability allows an unauthenticated remote attacker to upload and run arbitrary executable files, enabling them to perform arbitrary system commands or disrupt service. The danger of this vulnerability lies in the potential for unauthorized access and control over the affected system. It is critical to remediate this issue by implementing restrictions on file uploads and ensuring that only safe file types are allowed.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-48371 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options