CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-23333

There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.942

EPSS Ranking 99.9%

CVSS Severity

CVSS v3 Score 9.8

References

http://packetstormsecurity.com/files/174537/SolarView-Compact-6.00-Remote-Command-Execution.html
https://github.com/Timorlover/CVE-2023-23333
http://packetstormsecurity.com/files/174537/SolarView-Compact-6.00-Remote-Command-Execution.html
https://github.com/Timorlover/CVE-2023-23333

Products affected by CVE-2023-23333

Contec » Solarview Compact » Version: N/A

cpe:2.3:h:contec:solarview_compact:-
Contec » Solarview Compact Firmware » Version: 4.0

cpe:2.3:o:contec:solarview_compact_firmware:4.0
Contec » Solarview Compact Firmware » Version: 5.0

cpe:2.3:o:contec:solarview_compact_firmware:5.0
Contec » Solarview Compact Firmware » Version: 6.0

cpe:2.3:o:contec:solarview_compact_firmware:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-23333

Products

Pricing

Contact Us