A vulnerability in the web-based management allows an unauthenticated remote attacker to inject arbitrary system commands and gain full system control. Those commands are executed with root privileges. The vulnerability is located in the user request handling of the web-based management.
References
Link | Resource |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-037 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-11-21T07:00:25.240Z
Updated: 2023-11-21T07:00:25.240Z
Reserved: 2023-08-04T08:15:12.564Z
Link: CVE-2023-4149
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-21T07:15:10.093
Modified: 2023-11-29T17:09:20.563
Link: CVE-2023-4149
JSON object: View
Redhat Information
No data.
CWE