Vulnerability Details CVE-2023-31493
RCE (Remote Code Execution) exists in ZoneMinder through 1.36.33 as an attacker can create a new .php log file in language folder, while executing a crafted payload and escalate privileges allowing execution of any commands on the remote system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.8%
CVSS Severity
CVSS v3 Score 6.6
References
Products affected by CVE-2023-31493
-
cpe:2.3:a:zoneminder:zoneminder:-
-
cpe:2.3:a:zoneminder:zoneminder:1.25
-
cpe:2.3:a:zoneminder:zoneminder:1.26
-
cpe:2.3:a:zoneminder:zoneminder:1.26.0
-
cpe:2.3:a:zoneminder:zoneminder:1.26.1
-
cpe:2.3:a:zoneminder:zoneminder:1.26.2
-
cpe:2.3:a:zoneminder:zoneminder:1.26.3
-
cpe:2.3:a:zoneminder:zoneminder:1.26.4
-
cpe:2.3:a:zoneminder:zoneminder:1.26.5
-
cpe:2.3:a:zoneminder:zoneminder:1.27.0
-
cpe:2.3:a:zoneminder:zoneminder:1.28.0
-
cpe:2.3:a:zoneminder:zoneminder:1.28.1
-
cpe:2.3:a:zoneminder:zoneminder:1.29.0
-
cpe:2.3:a:zoneminder:zoneminder:1.30.0
-
cpe:2.3:a:zoneminder:zoneminder:1.30.1
-
cpe:2.3:a:zoneminder:zoneminder:1.30.2
-
cpe:2.3:a:zoneminder:zoneminder:1.30.3
-
cpe:2.3:a:zoneminder:zoneminder:1.30.4
-
cpe:2.3:a:zoneminder:zoneminder:1.30.5
-
cpe:2.3:a:zoneminder:zoneminder:1.32.0
-
cpe:2.3:a:zoneminder:zoneminder:1.32.1
-
cpe:2.3:a:zoneminder:zoneminder:1.32.2
-
cpe:2.3:a:zoneminder:zoneminder:1.32.3
-
cpe:2.3:a:zoneminder:zoneminder:1.34.0
-
cpe:2.3:a:zoneminder:zoneminder:1.34.1
-
cpe:2.3:a:zoneminder:zoneminder:1.34.10
-
cpe:2.3:a:zoneminder:zoneminder:1.34.11
-
cpe:2.3:a:zoneminder:zoneminder:1.34.12
-
cpe:2.3:a:zoneminder:zoneminder:1.34.13
-
cpe:2.3:a:zoneminder:zoneminder:1.34.14
-
cpe:2.3:a:zoneminder:zoneminder:1.34.15
-
cpe:2.3:a:zoneminder:zoneminder:1.34.16
-
cpe:2.3:a:zoneminder:zoneminder:1.34.17
-
cpe:2.3:a:zoneminder:zoneminder:1.34.18
-
cpe:2.3:a:zoneminder:zoneminder:1.34.19
-
cpe:2.3:a:zoneminder:zoneminder:1.34.2
-
cpe:2.3:a:zoneminder:zoneminder:1.34.20
-
cpe:2.3:a:zoneminder:zoneminder:1.34.21
-
cpe:2.3:a:zoneminder:zoneminder:1.34.22
-
cpe:2.3:a:zoneminder:zoneminder:1.34.23
-
cpe:2.3:a:zoneminder:zoneminder:1.34.24
-
cpe:2.3:a:zoneminder:zoneminder:1.34.25
-
cpe:2.3:a:zoneminder:zoneminder:1.34.26
-
cpe:2.3:a:zoneminder:zoneminder:1.34.3
-
cpe:2.3:a:zoneminder:zoneminder:1.34.4
-
cpe:2.3:a:zoneminder:zoneminder:1.34.5
-
cpe:2.3:a:zoneminder:zoneminder:1.34.6
-
cpe:2.3:a:zoneminder:zoneminder:1.34.7
-
cpe:2.3:a:zoneminder:zoneminder:1.34.8
-
cpe:2.3:a:zoneminder:zoneminder:1.34.9
-
cpe:2.3:a:zoneminder:zoneminder:1.36.0
-
cpe:2.3:a:zoneminder:zoneminder:1.36.1
-
cpe:2.3:a:zoneminder:zoneminder:1.36.10
-
cpe:2.3:a:zoneminder:zoneminder:1.36.11
-
cpe:2.3:a:zoneminder:zoneminder:1.36.12
-
cpe:2.3:a:zoneminder:zoneminder:1.36.13
-
cpe:2.3:a:zoneminder:zoneminder:1.36.14
-
cpe:2.3:a:zoneminder:zoneminder:1.36.15
-
cpe:2.3:a:zoneminder:zoneminder:1.36.16
-
cpe:2.3:a:zoneminder:zoneminder:1.36.17
-
cpe:2.3:a:zoneminder:zoneminder:1.36.18
-
cpe:2.3:a:zoneminder:zoneminder:1.36.19
-
cpe:2.3:a:zoneminder:zoneminder:1.36.2
-
cpe:2.3:a:zoneminder:zoneminder:1.36.20
-
cpe:2.3:a:zoneminder:zoneminder:1.36.21
-
cpe:2.3:a:zoneminder:zoneminder:1.36.22
-
cpe:2.3:a:zoneminder:zoneminder:1.36.23
-
cpe:2.3:a:zoneminder:zoneminder:1.36.24
-
cpe:2.3:a:zoneminder:zoneminder:1.36.25
-
cpe:2.3:a:zoneminder:zoneminder:1.36.26
-
cpe:2.3:a:zoneminder:zoneminder:1.36.27
-
cpe:2.3:a:zoneminder:zoneminder:1.36.28
-
cpe:2.3:a:zoneminder:zoneminder:1.36.29
-
cpe:2.3:a:zoneminder:zoneminder:1.36.3
-
cpe:2.3:a:zoneminder:zoneminder:1.36.30
-
cpe:2.3:a:zoneminder:zoneminder:1.36.31
-
cpe:2.3:a:zoneminder:zoneminder:1.36.32
-
cpe:2.3:a:zoneminder:zoneminder:1.36.33
-
cpe:2.3:a:zoneminder:zoneminder:1.36.4
-
cpe:2.3:a:zoneminder:zoneminder:1.36.5
-
cpe:2.3:a:zoneminder:zoneminder:1.36.6
-
cpe:2.3:a:zoneminder:zoneminder:1.36.7
-
cpe:2.3:a:zoneminder:zoneminder:1.36.8
-
cpe:2.3:a:zoneminder:zoneminder:1.36.9