CVE-2023-41788

Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allows attackers to execute code via PHP file uploads. This issue affects Pandora FMS: from 700 through 773.

Published: Nov 23, 2023
Updated: Nov 30, 2023
CVE: CVE-2023-41788
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-434

Affected Software
References

Software	From	Fixed in
artica / pandora_fms	700	774

https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/

Vulnerability Database

289,871

CVE-2023-41788