Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2023-45158
HistoryOct 16, 2023 - 8:15 a.m.

CVE-2023-45158

2023-10-1608:15:09
Google
osv.dev
8
vulnerability
web2py
command injection
notifysendhandler
arbitrary execution
web server
software

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

37.2%

JSON

An OS command injection vulnerability exists in web2py 2.24.1 and earlier. When the product is configured to use notifySendHandler for logging (not the default configuration), a crafted web request may execute an arbitrary OS command on the web server using the product.

Related

vulnrichment 1
cvelist 1
jvn 1
cve 1
ubuntucve 1
prion 1
nvd 1
githubexploit 1
vulnrichment
vulnrichment
CVE-2023-45158
2023-10-16 07:53:52
cvelist
cvelist
CVE-2023-45158
2023-10-16 07:53:52
jvn
jvn
JVN#80476432: web2py vulnerable to OS command injection
2023-10-16 00:00:00
cve
cve
CVE-2023-45158
2023-10-16 08:15:09
ubuntucve
ubuntucve
CVE-2023-45158
2023-10-16 00:00:00
prion
prion
Command injection
2023-10-16 08:15:00
nvd
nvd
CVE-2023-45158
2023-10-16 08:15:09
githubexploit
githubexploit
Exploit for OS Command Injection in Web2Py
2023-11-04 21:14:09

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.001

Percentile

37.2%

JSON
Related for OSV:CVE-2023-45158
vulnrichment1cvelist1jvn1cve1ubuntucve1prion1nvd1githubexploit1