The Akuvox E11 web server backend library allows command injection in the device phone-book contacts functionality. This could allow an attacker to upload files with executable command instructions.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-23-068-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2023-03-13T20:22:01.322Z
Updated: 2023-03-13T20:22:01.322Z
Reserved: 2023-01-17T19:26:54.871Z
Link: CVE-2023-0351
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-13T21:15:13.563
Modified: 2023-11-07T04:00:16.050
Link: CVE-2023-0351
JSON object: View
Redhat Information
No data.
CWE