CVE-2023-30261

CVE-2023-30261

EPSS 27.1%

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://eldstal.se/advisories/230329-openwb.html https://github.com/snaptec/openWB/issues/2672 https://github.com/snaptec/openWB/pull/2673