Skip to main content

CVE-2023-24517

Description

Unrestricted Upload of File with Dangerous Type vulnerability in the Pandora FMS File Manager component, allows an attacker to make make use of this issue ( unrestricted file upload ) to execute arbitrary system commands. This issue affects Pandora FMS v767 version and prior versions on all platforms.

NVD
Severity: HIGH
CVE ID: CVE-2023-24517
CVSS Score: 7.2
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Spanish National Cybersecurity Institute, S.A. (INCIBE)
Severity: MEDIUM
CVE ID: CVE-2023-24517
CVSS Score: 6.4
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L

Refrence: NVDMITRE

Proof Of Concept

Argonx21

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.8