Directory Traversal Remote Code Execution Vulnerability 

(CVE-2023-33227)

Summary

The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low- level user to perform the actions with SYSTEM privileges.

Affected Products

  • 2023.3.1 and previous versions

Fixed Software Release

Acknowledgments

  • Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative

Advisory Details

Severity

8.0 High

Advisory ID

First Published

11/01/2023

Last Updated

11/01/2023