How severe is CVE-2023-23076?

CVE-2023-23076 has a severity rating of 9.8 (critical).

Which software is affected by CVE-2023-23076?

Support Center Plus 11 versions 11.0-11001 to 11.0-11027 are affected by CVE-2023-23076.

How can I fix CVE-2023-23076?

To fix CVE-2023-23076, apply the necessary security patches provided by Zohocorp Manageengine for Support Center Plus 11.

Where can I find more information about CVE-2023-23076?

You can find more information about CVE-2023-23076 on the Zohocorp Manageengine website and the bug bounty report.

Vulnerability/
CVE-2023-23076

critical

9.8

CWE

78 77

1/2/2023

2/8/2024

CVE-2023-23076: OS Command Injection

First published: Wed Feb 01 2023(Updated: )

OS Command injection vulnerability in Support Center Plus 11 via Executor in Action when creating new schedules.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Zohocorp Manageengine Supportcenter Plus	=11.0
Zohocorp Manageengine Supportcenter Plus	=11.0-11001
Zohocorp Manageengine Supportcenter Plus	=11.0-11002
Zohocorp Manageengine Supportcenter Plus	=11.0-11003
Zohocorp Manageengine Supportcenter Plus	=11.0-11004
Zohocorp Manageengine Supportcenter Plus	=11.0-11005
Zohocorp Manageengine Supportcenter Plus	=11.0-11006
Zohocorp Manageengine Supportcenter Plus	=11.0-11007
Zohocorp Manageengine Supportcenter Plus	=11.0-11008
Zohocorp Manageengine Supportcenter Plus	=11.0-11009
Zohocorp Manageengine Supportcenter Plus	=11.0-11010
Zohocorp Manageengine Supportcenter Plus	=11.0-11011
Zohocorp Manageengine Supportcenter Plus	=11.0-11012
Zohocorp Manageengine Supportcenter Plus	=11.0-11013
Zohocorp Manageengine Supportcenter Plus	=11.0-11014
Zohocorp Manageengine Supportcenter Plus	=11.0-11015
Zohocorp Manageengine Supportcenter Plus	=11.0-11016
Zohocorp Manageengine Supportcenter Plus	=11.0-11017
Zohocorp Manageengine Supportcenter Plus	=11.0-11018
Zohocorp Manageengine Supportcenter Plus	=11.0-11019
Zohocorp Manageengine Supportcenter Plus	=11.0-11020
Zohocorp Manageengine Supportcenter Plus	=11.0-11021
Zohocorp Manageengine Supportcenter Plus	=11.0-11022
Zohocorp Manageengine Supportcenter Plus	=11.0-11024
Zohocorp Manageengine Supportcenter Plus	=11.0-11025
Zohocorp Manageengine Supportcenter Plus	=11.0-11026
Zohocorp Manageengine Supportcenter Plus	=11.0-11027

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-23076?
CVE-2023-23076 is an OS Command injection vulnerability in Support Center Plus 11 via Executor in Action when creating new schedules.
How severe is CVE-2023-23076?
CVE-2023-23076 has a severity rating of 9.8 (critical).
Which software is affected by CVE-2023-23076?
Support Center Plus 11 versions 11.0-11001 to 11.0-11027 are affected by CVE-2023-23076.
How can I fix CVE-2023-23076?
To fix CVE-2023-23076, apply the necessary security patches provided by Zohocorp Manageengine for Support Center Plus 11.
Where can I find more information about CVE-2023-23076?
You can find more information about CVE-2023-23076 on the Zohocorp Manageengine website and the bug bounty report.

collector/nvd-index
agent/weakness
agent/references
agent/author
agent/severity
agent/type
agent/description
agent/event
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/zohocorp
canonical/zohocorp manageengine supportcenter plus
version/zohocorp manageengine supportcenter plus/11.0
version/zohocorp manageengine supportcenter plus/11.0-11001
version/zohocorp manageengine supportcenter plus/11.0-11002
version/zohocorp manageengine supportcenter plus/11.0-11003
version/zohocorp manageengine supportcenter plus/11.0-11004
version/zohocorp manageengine supportcenter plus/11.0-11005
version/zohocorp manageengine supportcenter plus/11.0-11006
version/zohocorp manageengine supportcenter plus/11.0-11007
version/zohocorp manageengine supportcenter plus/11.0-11008
version/zohocorp manageengine supportcenter plus/11.0-11009
version/zohocorp manageengine supportcenter plus/11.0-11010
version/zohocorp manageengine supportcenter plus/11.0-11011
version/zohocorp manageengine supportcenter plus/11.0-11012
version/zohocorp manageengine supportcenter plus/11.0-11013
version/zohocorp manageengine supportcenter plus/11.0-11014
version/zohocorp manageengine supportcenter plus/11.0-11015
version/zohocorp manageengine supportcenter plus/11.0-11016
version/zohocorp manageengine supportcenter plus/11.0-11017
version/zohocorp manageengine supportcenter plus/11.0-11018
version/zohocorp manageengine supportcenter plus/11.0-11019
version/zohocorp manageengine supportcenter plus/11.0-11020
version/zohocorp manageengine supportcenter plus/11.0-11021
version/zohocorp manageengine supportcenter plus/11.0-11022
version/zohocorp manageengine supportcenter plus/11.0-11024
version/zohocorp manageengine supportcenter plus/11.0-11025
version/zohocorp manageengine supportcenter plus/11.0-11026
version/zohocorp manageengine supportcenter plus/11.0-11027

CVE-2023-23076: OS Command Injection

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-23076?

How severe is CVE-2023-23076?

Which software is affected by CVE-2023-23076?

How can I fix CVE-2023-23076?

Where can I find more information about CVE-2023-23076?

Company

Resources

Contact