CVE-2023-5607

Name of the Vulnerable Software and Affected Versions TACC ePO extension versions prior to 8.4.0

Description The issue is related to an improper limitation of a path name to a restricted directory, which could allow an authorized administrator attacker to execute arbitrary code by uploading a specially crafted GTI reputation file. The attacker would need appropriate privileges to access the relevant section of the User Interface. The import logic has been updated to restrict file types and content.

Recommendations For versions prior to 8.4.0, update to version 8.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the GTI reputation file upload feature until the update is applied. Additionally, restrict file types and content to minimize the risk of exploitation.