PT-2023-24369 · Kramerav · Kramerav Via Go²

Jim Rush

Publicado

2023-05-31

Atualizado

2025-01-10

CVE-2023-33508

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions KramerAV VIA GO² versions prior to 4.0.1.1326

Description The issue allows for unauthenticated file upload, resulting in Remote Code Execution (RCE).

Recommendations For versions prior to 4.0.1.1326, update to version 4.0.1.1326 or later to resolve the issue.

Exploit

Correção

Unrestricted File Upload

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2023-33508

Kramerav Via Go²