CVE-2023-36255

CVE-2023-36255

EPSS 57.4%

An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://eramba.com https://trovent.github.io/security-advisories/TRSA-2303-01/TRSA-2303-01.txt https://trovent.io/security-advisory-2303-01/https://www.eramba.org