exploitDog

CVE-2023-37733

Опубликовано: 19 июл. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

An arbitrary file upload vulnerability in tduck-platform v4.0 allows attackers to execute arbitrary code via a crafted HTML file.

Ссылки

http://v40.com
Broken Link
Not Applicable
https://github.com/TDuckCloud/tduck-platform
Product
https://github.com/TDuckCloud/tduck-platform/issues/17
Exploit
Issue Tracking
http://v40.com
Broken Link
Not Applicable
https://github.com/TDuckCloud/tduck-platform
Product
https://github.com/TDuckCloud/tduck-platform/issues/17
Exploit
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tduckcloud:tduck-platform:4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.00093

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-9hv6-r74p-93h4

CVSS3: 6.1

github

больше 2 лет назад

An arbitrary file upload vulnerability in tduck-platform v4.0 allows attackers to execute arbitrary code via a crafted HTML file.

EPSS

Процентиль: 26%

0.00093

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79