CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45312

In the mtproto_proxy (aka MTProto proxy) component through 0.7.2 for Erlang, a low-privileged remote attacker can access an improperly secured default installation without authenticating and achieve remote command execution ability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.029

EPSS Ranking 85.8%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2023-45312

Mtproto » Mt Proto Proxy » Version: 0.5.0

cpe:2.3:a:mtproto:mt_proto_proxy:0.5.0
Mtproto » Mt Proto Proxy » Version: 0.5.1

cpe:2.3:a:mtproto:mt_proto_proxy:0.5.1
Mtproto » Mt Proto Proxy » Version: 0.6.0

cpe:2.3:a:mtproto:mt_proto_proxy:0.6.0
Mtproto » Mt Proto Proxy » Version: 0.6.1

cpe:2.3:a:mtproto:mt_proto_proxy:0.6.1
Mtproto » Mt Proto Proxy » Version: 0.7.0

cpe:2.3:a:mtproto:mt_proto_proxy:0.7.0
Mtproto » Mt Proto Proxy » Version: 0.7.1

cpe:2.3:a:mtproto:mt_proto_proxy:0.7.1
Mtproto » Mt Proto Proxy » Version: 0.7.2

cpe:2.3:a:mtproto:mt_proto_proxy:0.7.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45312

Products

Pricing

Contact Us