An arbitrary file upload vulnerability in the Gestione Documentale module of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted file.
References
Configurations
History
21 Nov 2024, 08:21
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/CapgeminiCisRedTeam/Disclosure/blob/f7aafa9fcd4efa30071c7f77d3e9e6b14e92302b/CVE%20PoC/CVE-2023-41638%20%7C%20RealGimm%20-%20RCE%20via%20Unrestricted%20File%20Upload.md - | |
References | () https://github.com/CapgeminiCisRedTeam/Disclosure/blob/main/CVE%20PoC/CVE-ID%20%7C%20RealGimm%20-%20RCE%20via%20Unrestricted%20File%20Upload.md - Broken Link, Exploit, Third Party Advisory |
Information
Published : 2023-08-31 14:15
Updated : 2024-11-21 08:21
NVD link : CVE-2023-41638
Mitre link : CVE-2023-41638
CVE.ORG link : CVE-2023-41638
JSON object : View
Products Affected
grupposcai
- realgimm
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type