Precios Enterprise

CVE-2023-38995

9.8CRITICAL

An issue in SCHUHFRIED v.8.22.00 allows remote attacker to obtain the database password via crafted curl command.

Publicado: 2/7/2024Actualizado: 5/15/2025

Ver en NVD Ver en MITRE

Descripción

An issue in SCHUHFRIED v.8.22.00 allows remote attacker to obtain the database password via crafted curl command.

Análisis IAImpulsado por IA

Productos Afectados

schuhfriedschuhfried

Referencias

https://github.com/post-cyberlabs/CVE-Advisory/blob/main/CVE-2023-38995-Schuhfried-Preauth-PrivEsc.pdf
ExploitTechnical DescriptionThird Party Advisory
https://github.com/post-cyberlabs/CVE-Advisory/blob/main/CVE-2023-38995-Schuhfried-Preauth-PrivEsc.pdf
ExploitTechnical DescriptionThird Party Advisory