Vulnerability Details CVE-2023-32615
A file write vulnerability exists in the OAS Engine configuration functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigger this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.5%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-32615
-
cpe:2.3:a:openautomationsoftware:oas_platform:18.00.0072