CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45798

In Yettiesoft VestCert versions 2.36 to 2.5.29, a vulnerability exists due to improper validation of third-party modules. This allows malicious actors to load arbitrary third-party modules, leading to remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.3%

CVSS Severity

CVSS v3 Score 8.4

References

https://www.boho.or.kr/kr/bbs/view.do?bbsId=B0000133&nttId=71008&menuNo=205020
https://www.boho.or.kr/kr/bbs/view.do?bbsId=B0000133&nttId=71008&menuNo=205020

Products affected by CVE-2023-45798

Yettiesoft » Vestcert » Version: 2.3.6

cpe:2.3:a:yettiesoft:vestcert:2.3.6
Yettiesoft » Vestcert » Version: 2.5.29

cpe:2.3:a:yettiesoft:vestcert:2.5.29

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45798

Products

Pricing

Contact Us