Directory Traversal Remote Code Execution Vulnerability
(CVE-2023-33226)
Summary
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges.Affected Products
- Network Configuration Manager 2023.3.1 and previous versions
Fixed Software Release
Acknowledgments
- Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative
Advisory Details
Severity
8.0 High
Advisory ID
First Published
11/01/2023