Vulnerability Details CVE-2023-33376
Connected IO v2.1.0 and prior has an argument injection vulnerability in its iptables command message in its communication protocol, enabling attackers to execute arbitrary OS commands on devices.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.1%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-33376
-
cpe:2.3:a:connectedio:connected_io:*