It is identified a vulnerability of Unrestricted Upload of File with Dangerous Type in the file uploading function in InfoDoc Document On-line Submission and Approval System, which allows an unauthenticated remote attacker can exploit this vulnerability without logging system to upload and run arbitrary executable files to perform arbitrary system commands or disrupt service. This issue affects Document On-line Submission and Approval System: 22547, 22567.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.twcert.org.tw/tw/cp-132-7225-cef32-1.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2023-07-20T02:45:25.479Z
Updated: 2024-08-02T17:09:34.180Z
Reserved: 2023-06-30T02:08:23.931Z
Link: CVE-2023-37289
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-20T03:15:10.047
Modified: 2023-07-28T15:35:40.427
Link: CVE-2023-37289
Redhat
No data.