Lucene search
MitreCVE-2023-38942HistoryAug 03, 2023 - 7:15 p.m.
CVE-2023-38942
2023-08-0319:15:10
CWE-77
mitre
web.nvd.nist.gov
14
cve-2023-38942
dango-translator
rce
remote command execution
vulnerability
cloud_config.json
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.009
Percentile
82.8%
Dango-Translator v4.5.5 was discovered to contain a remote command execution (RCE) vulnerability via the component app/config/cloud_config.json.
Affected configurations
Node
dangodango-translatorMatch4.5.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dango | dango-translator | 4.5.5 | cpe:2.3:a:dango:dango-translator:4.5.5:*:*:*:*:*:*:* |
Related
prion
prion
Command injection
2023-08-03 19:15:00
osv
osv
CVE-2023-38942
2023-08-03 19:15:10
cvelist
cvelist
CVE-2023-38942
2023-08-03 00:00:00
nvd
nvd
CVE-2023-38942
2023-08-03 19:15:10
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.009
Percentile
82.8%
Related for CVE-2023-38942