PT-2023-28012 · Unknown · Esst Monitoring
Published
2023-10-17
·
Updated
2023-10-23
·
CVE-2023-41631
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
eSST Monitoring version 2.147.1
Description
The issue is related to a remote code execution (RCE) vulnerability via the file upload function.
Recommendations
For eSST Monitoring version 2.147.1, consider disabling the file upload function until a patch is available. Restrict access to the file upload module to minimize the risk of exploitation.
Exploit
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Esst Monitoring