Unquoted Service Path Vulnerability in VX Search v13.8 and v14.7

Unquoted Service Path Vulnerability in VX Search v13.8 and v14.7

CVE-2023-24671 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which allows attackers to execute arbitrary commands at elevated privileges via a crafted executable file.

Learn more about our Web Application Penetration Testing UK.