exploitDog

CVE-2023-40055

Опубликовано: 09 нояб. 2023

Источник: nvd

CVSS3: 8

CVSS3: 8.8

EPSS Низкий

Описание

The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33227

Ссылки

https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-40055
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-40055
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:*

Версия до 2023.4 (включая)

EPSS

Процентиль: 87%

0.03552

Низкий

8 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-25mw-fj8x-6qq5

CVSS3: 8

github

около 2 лет назад

The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33227

EPSS

Процентиль: 87%

0.03552

Низкий

8 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-22