A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operating System command is entered on the device. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published: 2023-04-18T20:34:40.438Z

Updated: 2024-08-02T11:25:19.269Z

Reserved: 2023-02-07T17:00:03.780Z

Link: CVE-2023-25554

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-18T21:15:08.843

Modified: 2024-11-21T07:49:43.193

Link: CVE-2023-25554

cve-icon Redhat

No data.