Critical Privileged RCE Vulnerability in Assets Discovery Agent

Critical Privileged RCE Vulnerability in Assets Discovery Agent

CVE-2023-22523 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets Discovery agent installed. The vulnerability exists between the Assets Discovery application (formerly known as Insight Discovery) and the Assets Discovery agent.

Learn more about our Web Application Penetration Testing UK.