Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:43 a.m.7 views

CVE-2023-40050

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...

9.9CVSS7.9AI score0.01184EPSS
Exploits0
NVD
NVD
added 2023/10/31 3:15 p.m.26 views

CVE-2023-40050

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...

9.9CVSS9.9AI score0.01184EPSS
Exploits0References3
OSV
OSV
added 2023/10/31 2:7 p.m.28 views

CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...

9.9CVSS7.5AI score0.01184EPSS
Exploits0References7
CVE
CVE
added 2023/10/31 2:7 p.m.43 views

CVE-2023-40050

CVE-2023-40050 affects Chef Automate versions prior to and including 4.10.29. A remote code execution flaw exists when uploading a profile through the API or the user interface using the InSpec check command with a maliciously crafted profile. Affected component is the profile upload pathway in C...

9.9CVSS9.7AI score0.01184EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/31 2:7 p.m.12 views

CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...

9.9CVSS7.8AI score0.01184EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/10/31 2:7 p.m.29 views

CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...

9.9CVSS10AI score0.01184EPSS
Exploits0References3
Rows per page
Query Builder