PT-2023-21191 · Unknown · Solarview Compact Sv-Cpt-Mc310
Sma11New
·
Published
2023-05-23
·
Updated
2025-01-31
·
CVE-2023-27521
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10
SolarView Compact SV-CPT-MC310F versions prior to Ver.8.10
Description
The issue allows remote authenticated attackers to execute an arbitrary OS command due to an OS command injection vulnerability in the mail setting page.
Recommendations
For SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, update to Ver.8.10 or later.
For SolarView Compact SV-CPT-MC310F versions prior to Ver.8.10, update to Ver.8.10 or later.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Solarview Compact Sv-Cpt-Mc310