CVE-2023-52311

CVSS 3.1 Score 9.6 of 10 (high)

Details

Published Jan 3, 2024
Updated: Jan 5, 2024
CWE ID 78

Summary

CVE-2023-52311 is a command injection vulnerability found in PaddlePaddle prior to version 2.6.0. This vulnerability allows an attacker to execute arbitrary commands on the operating system. The affected products include pH1GLe, pH1GLf, pH1GLc, pH1GLd, pH1GLa, pH1GLb, and many more. To remediate this vulnerability, organizations should update their PaddlePaddle installations to version 2.6.0 or later. The potential danger posed by this vulnerability is high, as it allows attackers to execute malicious commands and potentially gain unauthorized access to systems or steal sensitive information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-52311 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options