First published: Mon Nov 20 2023(Updated: )
Deserialization of Untrusted Data in PublicCMS v.4.0.202302.e allows a remote attacker to execute arbitrary code via a crafted script to the writeReplace function.
|Affected Software||Affected Version||How to fix|
The severity of CVE-2023-46990 is critical.
CVE-2023-46990 affects PublicCMS v.4.0.202302.e.
A remote attacker can exploit CVE-2023-46990 by executing arbitrary code via a crafted script to the writeReplace function.
At the moment, there is no known fix available for CVE-2023-46990. It is recommended to follow the provided reference for any updates on the vulnerability.
The Common Weakness Enumeration (CWE) ID for CVE-2023-46990 is 502.