CVE-2023-30261

CVE-2023-30261

EPSS 27.1%

Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://eldstal.se/advisories/230329-openwb.html https://github.com/snaptec/openWB/issues/2672 https://github.com/snaptec/openWB/pull/2673