216.73.217.64

CVE-2023-42248

· Published 13/01/2025 22:15 · Modified 31/01/2025 17:15

Labels: CVE-2023-42248 2025-01-13CVE-2023-42248CWE-434[email protected]

Essential information

Published
13/01/2025 22:15
Modified
31/01/2025 17:15
Author
Creator
CVSS
6.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CVSS metrics

Description

An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php".

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References