CVE-2023-1731
CVSS V2 None
CVSS V3 None
Description
In LTOS versions prior to V7.06.013, the configuration file upload function would not correctly validate the input, which would allow an remote authenticated attacker with high privileges to execute arbitrary commands.
Overview
- CVE ID
- CVE-2023-1731
- Assigner
- info@cert.vde.com
- Vulnerability Status
- Received
- Published Version
- 2023-04-24T14:15:07
- Last Modified Date
- 2023-04-24T14:15:07
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.meinbergglobal.com/english/news/meinberg-security-advisory-mbgsa-2023-02-lantime-firmware-v7-06-013.htm |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-1731 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1731 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-24 15:01:02 | Added to TrackCVE | |||
| 2023-04-24 15:01:04 | Weakness Enumeration | new |