CVE-2023-24835

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service.
References
Link Resource
https://www.twcert.org.tw/tw/cp-132-6955-c7612-1.html Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:softnext:spam_sqr:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-03-27 04:15

Updated : 2024-02-28 20:13


NVD link : CVE-2023-24835

Mitre link : CVE-2023-24835

CVE.ORG link : CVE-2023-24835


JSON object : View

Products Affected

softnext

  • spam_sqr
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')