CVE-2023-51066

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 13, 2024
Updated: Jan 19, 2024
CWE ID 94

Summary

CVE-2023-51066 is an authenticated remote code execution vulnerability found in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0. It allows attackers to execute arbitrary commands. This vulnerability has a risk score of 65 and a base severity of HIGH. The exploitability score is 2.8, and the base score is 8.8 according to [email protected]. The privileges required for exploitation are low, and there is no user interaction required. The attack vector is through the network, and the impact on integrity and confidentiality is high. The availability impact is also high. This vulnerability falls under CWE-94, which relates to improper control of code generation (code injection). There is no specific information provided on how to remediate this vulnerability or the potential danger it poses to an organization.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share