Lucene search

PRIOn knowledge basePRION:CVE-2023-48193

HistoryNov 28, 2023 - 9:15 p.m.

Design/Logic Flaw

2023-11-2821:15:00

PRIOn knowledge base

www.prio-n.com

insecure permissions

jumpserver

remote code execution

vulnerability

gplv3

8.2 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.5%

JSON

Insecure Permissions vulnerability in JumpServer GPLv3 v.3.8.0 allows a remote attacker to execute arbitrary code via bypassing the command filtering function.

CPENameOperatorVersion
jumpservereq3.8.0

CPE	Name	Operator	Version
	jumpserver	eq	3.8.0

References

jumpserver.com

github.com/296430468/lcc_test/blob/main/jumpserver_BUG.md

github.com/jumpserver/jumpserver