2 matches found
CVE-2023-0265
CVE-2023-0265 affects Uvdesk 1.1.1. An authenticated remote attacker can execute commands on the server due to improper validation of profile pictures uploaded by customers, enabling remote code execution. The vulnerability is characterized as high risk (CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/...
CVE-2023-0265
Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers...