Lucene search
K

5 matches found

NVD
NVD
added 2023/06/01 3:15 p.m.35 views

CVE-2023-33965

Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...

9.6CVSS9.7AI score0.0158EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/06/01 2:10 p.m.7 views

CVE-2023-33965 Brook's tproxy server is vulnerable to a drive-by command injection.

Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...

9.6CVSS8.2AI score0.0158EPSS
Exploits0References2
OSV
OSV
added 2023/06/01 2:10 p.m.28 views

CVE-2023-33965 Brook's tproxy server is vulnerable to a drive-by command injection.

Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...

9.6CVSS9.3AI score0.0158EPSS
Exploits0References4
CVE
CVE
added 2023/06/01 2:10 p.m.42 views

CVE-2023-33965

Brook's tproxy server component is vulnerable to a drive-by command injection, enabling remote code execution when a user visits a malicious page that triggers requests to the local tproxy service. A fix is available in version 20230606. The affected product is the Brook cross‑platform network to...

9.6CVSS9.5AI score0.0158EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/06/01 2:10 p.m.49 views

CVE-2023-33965 Brook's tproxy server is vulnerable to a drive-by command injection.

Brook is a cross-platform programmable network tool. The tproxy server is vulnerable to a drive-by command injection. An attacker may fool a victim into visiting a malicious web page which will trigger requests to the local tproxy service leading to remote code execution. A patch is available in...

9.6CVSS9.9AI score0.0158EPSS
Exploits0References2
Rows per page
Query Builder