CVE-2023-38404

The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.

Published: Jul 17, 2023
Updated: Jul 28, 2023
CVE: CVE-2023-38404
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-434

Affected Software
References

Software	From	Fixed in
veritas / infoscale_operations_manager	7.0.0	8.0.0.410

https://www.veritas.com/content/support/en_US/security/VTS23-009

Vulnerability Database

290,206

CVE-2023-38404