Vulnerability Details CVE-2023-49328
On a Wolters Kluwer B.POINT 23.70.00 server running Linux on premises, during the authentication phase, a validated system user can achieve remote code execution via Argument Injection in the server-to-server module.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.1%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2023-49328
-
cpe:2.3:a:wolterskluwer:b.point:23.70.00
-
cpe:2.3:o:linux:linux_kernel:-