6 matches found
CVE-2023-33271
CVE-2023-33271 affects DTS Monitoring 3.57.0. The vulnerability is in the SSL Certificate check function, where the common_name parameter is vulnerable to blind OS command injection. If exploitable, this could allow an attacker to execute commands on the affected system. Mitigations referenced in...
CVE-2023-33272
CVE-2023-33272 affects DTS Monitoring 3.57.0. The vulnerability is an OS command injection (blind) in the Ping check function via the ip parameter. CVSS 3.1 base score 9.8 (CRITICAL) with NETWORK attack vector and no privileges required. Exploitation details are not provided in the available docu...
CVE-2023-33270
CVE-2023-33270 affects DTS Monitoring 3.57.0. The issue is a blind OS command injection in the url parameter of the Curl check function, enabling arbitrary command execution with high impact (C/H/I/H) per the CVSS 3.1 vector. Connected sources confirm the vulnerable component and root cause but d...
CVE-2023-33268
CVE-2023-33268 affects DTS Monitoring 3.57.0. The vulnerability is in the SSL Certificate check function where the port parameter can be exploited to perform an OS command injection (blind). Impact details in connected sources align on the same issue; no exploit specifics or CVSS vectors beyond w...
CVE-2023-33269
DTS Monitoring 3.57.0 is affected by an OS command injection in the WGET check function, due to unsafe handling of the options parameter. CVSS 3.1/9.8 indicates a high-severity, network-based vulnerability with no user interaction. Some sources recommend disabling the WGET check until a patch is ...
CVE-2023-33273
CVE-2023-33273 affects DTS Monitoring 3.57.0 via the url parameter in the WGET check function, which is vulnerable to OS command injection (blind). This is the root cause described across multiple sources, with an impact of potential command execution. No exploit details are provided in the docum...