exploitDog

CVE-2023-6723

Опубликовано: 13 дек. 2023

Источник: nvd

CVSS3: 10

CVSS3: 9.8

EPSS Низкий

Описание

An unrestricted file upload vulnerability has been identified in Repbox, which allows an attacker to upload malicious files via the transforamationfileupload function, due to the lack of proper file type validation controls, resulting in a full system compromise.

Ссылки

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-repox
Third Party Advisory
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-repox
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:europeana:repox:2.3.7:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00051

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-qhj9-jqq3-357q

CVSS3: 10

github

около 2 лет назад

An unrestricted file upload vulnerability has been identified in Repbox, which allows an attacker to upload malicious files via the transforamationfileupload function, due to the lack of proper file type validation controls, resulting in a full system compromise.

EPSS

Процентиль: 16%

0.00051

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-434