Vulnerability Details CVE-2023-36255
An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.892
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 8.8
References
- http://eramba.com
- https://trovent.github.io/security-advisories/TRSA-2303-01/TRSA-2303-01.txt
- https://trovent.io/security-advisory-2303-01/
- https://www.eramba.org
- http://eramba.com
- https://trovent.github.io/security-advisories/TRSA-2303-01/TRSA-2303-01.txt
- https://trovent.io/security-advisory-2303-01/
- https://www.eramba.org