CVE-2023-1000 | cyanomiko dcnnt-py up to 0.9.0 Notification notifications.py main command injection (ID 23)

Inserito da Angelo Barbosa | Apr 27, 2024 | CVE

A vulnerability was found in cyanomiko dcnnt-py up to 0.9.0. It has been classified as critical. Affected is the function main of the file dcnnt/plugins/notifications.py of the component Notification Handler. The manipulation leads to command injection.

This vulnerability is traded as CVE-2023-1000. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-1000 | cyanomiko dcnnt-py up to 0.9.0 Notification notifications.py main command injection (ID 23)

Post correlati

CVE-2022-45449 | Acronis Cyber Protect 15 Agent information disclosure

CVE-2024-2976 | Tenda F1203 2.0.1.6 /goform/execCommand R7WebsSecurityHandler password stack-based overflow

CVE-2024-7404 | GitLab Community Edition/Enterprise Edition up to 17.3.6/17.4.3/17.5.1 ui layer (Issue 476670)

CVE-2023-42286 | EyouCMS up to 1.6.4 Template Configuration file inclusion