exploitDog

CVE-2023-26830

Опубликовано: 31 мар. 2023

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

An unrestricted file upload vulnerability in the administrative portal branding component of Gladinet CentreStack before 13.5.9808 allows authenticated attackers to execute arbitrary code by uploading malicious files to the server.

Ссылки

https://www.whiteoaksecurity.com/blog/centrestack-disclosure/
Exploit
Third Party Advisory
https://www.whiteoaksecurity.com/blog/centrestack-disclosure/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gladinet:centrestack:*:*:*:*:*:*:*:*

Версия до 13.5.9808 (исключая)

EPSS

Процентиль: 43%

0.00207

Низкий

7.2 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-5j89-9926-36q5

CVSS3: 7.2

github

почти 3 года назад

An unrestricted file upload vulnerability in the administrative portal branding component of Gladinet CentreStack before 13.5.9808 allows authenticated attackers to execute arbitrary code by uploading malicious files to the server.

EPSS

Процентиль: 43%

0.00207

Низкий

7.2 High

CVSS3

Дефекты

CWE-434