Directory Traversal Remote Code Execution Vulnerability
(CVE-2023-33227)
Summary
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low- level user to perform the actions with SYSTEM privileges.
Affected Products
- 2023.3.1 and previous versions
Fixed Software Release
Acknowledgments
- Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative
Advisory Details
Severity
8.0 High
Advisory ID
First Published
11/01/2023
Last Updated
11/01/2023