CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.0%

CVSS Severity

CVSS v3 Score 7.5

References

https://code-white.com/public-vulnerability-list/
https://www.indu-sol.com/en/products/profinet/diagnostics/profinet-inspektorr-nt/
https://code-white.com/public-vulnerability-list/
https://www.indu-sol.com/en/products/profinet/diagnostics/profinet-inspektorr-nt/

Products affected by CVE-2023-49960

Indu-Sol » Profinet-Inspektor Nt » Version: N/A

cpe:2.3:h:indu-sol:profinet-inspektor_nt:-
Indu-Sol » Profinet-Inspektor Nt Firmware » Version: Any

cpe:2.3:o:indu-sol:profinet-inspektor_nt_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-49960

Products

Pricing

Contact Us