First published: Fri Nov 17 2023(Updated: )
CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.
|Affected Software||Affected Version||How to fix|
The vulnerability ID for this CubeCart vulnerability is CVE-2023-47675.
The severity level of CVE-2023-47675 is high with a CVSS score of 7.2.
The affected software version for CVE-2023-47675 is CubeCart prior to version 6.5.3.
CVE-2023-47675 allows a remote authenticated attacker with administrative privilege to execute arbitrary OS commands.
Yes, there are references available for CVE-2023-47675. You can check the links for more information: [Link 1](https://forums.cubecart.com/topic/58736-cubecart-653-released-security-update/) and [Link 2](https://jvn.jp/en/jp/JVN22220399/).