CVE-2023-41788

Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allows attackers to execute code via PHP file uploads. This issue affects Pandora FMS: from 700 through 773.
Configurations

Configuration 1 (hide)

cpe:2.3:a:artica:pandora_fms:*:*:*:*:*:*:*:*

History

29 Nov 2023, 21:02

Type Values Removed Values Added
References () https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/ - () https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/ - Vendor Advisory
CWE CWE-434
CPE cpe:2.3:a:artica:pandora_fms:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8

24 Nov 2023, 15:24

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-23 15:15

Updated : 2024-02-05 00:22


NVD link : CVE-2023-41788

Mitre link : CVE-2023-41788

CVE.ORG link : CVE-2023-41788


JSON object : View

Products Affected

artica

  • pandora_fms
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type