Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.5 views

CVE-2023-25266

An issue was discovered in Docmosis Tornado prior to version 2.9.5. An authenticated attacker can change the Office directory setting pointing to an arbitrary remote network path. This triggers the execution of the soffice binary under the attackers control leading to arbitrary remote code...

8.8CVSS8.1AI score0.01634EPSS
Exploits1References1
Circl
Circl
added 2023/02/28 6:27 p.m.7 views

CVE-2023-25266

creationtimestamp| type| source ---|---|--- 2023-02-28 18:27:41+00:00| seen| https://t.me/cibsecurity/59103...

8.8CVSS8.1AI score0.01634EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/02/28 12:0 a.m.24 views

CVE-2023-25266

An issue was discovered in Docmosis Tornado prior to version 2.9.5. An authenticated attacker can change the Office directory setting pointing to an arbitrary remote network path. This triggers the execution of the soffice binary under the attackers control leading to arbitrary remote code...

9.1AI score0.01634EPSS
Exploits1References2
CVE
CVE
added 2023/02/28 12:0 a.m.62 views

CVE-2023-25266

Docmosis Tornado prior to 2.9.5 is affected. An authenticated attacker can modify the Office directory setting to point to an arbitrary remote network path, causing the soffice binary to execute under the attacker’s control and enabling arbitrary remote code execution (RCE). Impact is high (CVE-2...

8.8CVSS8.8AI score0.01634EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/28 12:0 a.m.7 views

CVE-2023-25266

An issue was discovered in Docmosis Tornado prior to version 2.9.5. An authenticated attacker can change the Office directory setting pointing to an arbitrary remote network path. This triggers the execution of the soffice binary under the attackers control leading to arbitrary remote code...

7.7AI score0.01634EPSS
Exploits1References2
Rows per page
Query Builder