CVE-2023-34207

Unrestricted upload of file with dangerous type vulnerability in create template function in EasyUse MailHunter Ultimate 2023 and earlier allows remote authenticated users to perform arbitrary system commands with ‘NT Authority\SYSTEM‘ privilege via a crafted ZIP archive.

CVSS v3 9.9 CRITICAL

9.9^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.1 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://zuso.ai/Advisory/ZA-2023-04	Third Party Advisory
https://zuso.ai/Advisory/ZA-2023-04	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:easyuse:mailhunter_ultimate:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:06

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-17 04:15

Updated : 2024-11-21 08:06

NVD link : CVE-2023-34207

Mitre link : CVE-2023-34207

CVE.ORG link : CVE-2023-34207

JSON object : View

Products Affected

easyuse

mailhunter_ultimate

CWE

CWE-434

Unrestricted Upload of File with Dangerous Type

{"id": "CVE-2023-34207", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "ART@zuso.ai", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.1}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2023-10-17T04:15:11.937", "references": [{"url": "https://zuso.ai/Advisory/ZA-2023-04", "tags": ["Third Party Advisory"], "source": "ART@zuso.ai"}, {"url": "https://zuso.ai/Advisory/ZA-2023-04", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "ART@zuso.ai", "description": [{"lang": "en", "value": "CWE-434"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "Unrestricted upload of file with dangerous type vulnerability in create template function in EasyUse MailHunter Ultimate 2023 and earlier allows remote authenticated users to perform arbitrary system commands with \u2018NT Authority\\SYSTEM\u2018 privilege via a crafted ZIP archive."}, {"lang": "es", "value": "La carga sin restricciones de archivos con vulnerabilidad de tipo peligroso en la funci\u00f3n de creaci\u00f3n de plantillas en EasyUse MailHunter Ultimate 2023 y versiones anteriores permite a usuarios remotos autenticados realizar comandos arbitrarios del sistema con el privilegio 'NT Authority\\SYSTEM' a trav\u00e9s de un archivo ZIP manipulado."}], "lastModified": "2024-11-21T08:06:46.183", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:easyuse:mailhunter_ultimate:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94D027C5-7AB4-4652-A7E8-4F979194ED01", "versionEndIncluding": "2023"}], "operator": "OR"}]}], "sourceIdentifier": "ART@zuso.ai"}