Critical Remote Command Injection Vulnerability in EasyNAS 1.1.0 (VDB-220950)

Critical Remote Command Injection Vulnerability in EasyNAS 1.1.0 (VDB-220950)

CVE-2023-0830 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability classified as critical has been found in EasyNAS 1.1.0. Affected is the function system of the file /backup.pl. The manipulation leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. VDB-220950 is the identifier assigned to this vulnerability.

Learn more about our Web Application Penetration Testing UK.