CVE-2023-5183
CVSS V2 None
CVSS V3 None
Description
Unsafe deserialization of untrusted JSON allows execution of arbitrary code on affected releases of the Illumio PCE. Authentication to the API is required to exploit this vulnerability. The flaw exists within the network_traffic API endpoint. An attacker can leverage this vulnerability to execute code in the context of the PCE’s operating system user.
Overview
- CVE ID
- CVE-2023-5183
- Assigner
- Illumio
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-09-26T21:29:36.575Z
- Last Modified Date
- 2023-09-26T23:41:08.564Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://docs.illumio.com/Guides/security-advisories/september-2023/cve-2023-5183.htm |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-5183 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5183 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 05:13:36 | Added to TrackCVE |