Lucene search
TR-CERTVULNRICHMENT:CVE-2023-3375HistorySep 05, 2023 - 4:35 p.m.
CVE-2023-3375 Unrestricted File Upload in Bookreen
2023-09-0516:35:31
CWE-434
TR-CERT
github.com
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection.This issue affects Bookreen: before 3.0.0.
References
Related
cvelist
cvelist
CVE-2023-3375 Unrestricted File Upload in Bookreen
2023-09-05 16:35:31
cve
cve
CVE-2023-3375
2023-09-05 17:15:09
prion
prion
Design/Logic Flaw
2023-09-05 17:15:00
nvd
nvd
CVE-2023-3375
2023-09-05 17:15:09
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-3375