Lucene search

[email protected]NVD:CVE-2023-48031

HistoryNov 17, 2023 - 2:15 a.m.

CVE-2023-48031

2023-11-1702:15:26

CWE-434

[email protected]

web.nvd.nist.gov

opensupports

vulnerability

unrestricted upload

unauthorized execution

file manipulation

security restrictions

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

45.9%

JSON

OpenSupports v4.11.0 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the comment function, an attacker can bypass security restrictions and upload a .bat file by manipulating the file’s magic bytes to masquerade as an allowed type. This can enable the attacker to execute arbitrary code or establish a reverse shell, leading to unauthorized file writes or control over the victim’s station via a crafted file upload operation.

Affected configurations

Nvd

Node

opensupportsopensupportsMatch4.11.0

VendorProductVersionCPE
opensupportsopensupports4.11.0cpe:2.3:a:opensupports:opensupports:4.11.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opensupports	opensupports	4.11.0	cpe:2.3:a:opensupports:opensupports:4.11.0:::::::*

References

bugplorer.github.io/cve-opensupports/

nitipoom-jar.github.io/CVE-2023-48031/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

45.9%

JSON

Related for NVD:CVE-2023-48031

prion1 cve1 cvelist1 vulnrichment1