Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service.
References
Link | Resource |
---|---|
https://www.twcert.org.tw/tw/cp-132-6955-c7612-1.html | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2023-03-27 04:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-24835
Mitre link : CVE-2023-24835
CVE.ORG link : CVE-2023-24835
JSON object : View
Products Affected
softnext
- spam_sqr
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')