Vulnerability Details CVE-2023-42248
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated attacker can write arbitrary files by manipulating POST parameters of the page "common/vam_Sql.php".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.7%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2023-42248
-
cpe:2.3:a:seling:visual_access_manager:4.15.0
-
cpe:2.3:a:seling:visual_access_manager:4.29.0