First published: Sat Oct 21 2023(Updated: )
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20231012. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /importexport.php. The manipulation leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243061 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
<=2023-10-12 | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-5684.
The severity of CVE-2023-5684 is critical.
The vulnerability occurs due to an os command injection in the file /importexport.php.
Yes, the attack can be launched remotely.
There is no fix available for CVE-2023-5684 at the moment. It is recommended to follow the vendor's instructions or security advisories for any updates or patches.