CWE-20: Improper Input Validation Vulnerability in Server Execution

CWE-20: Improper Input Validation Vulnerability in Server Execution

CVE-2023-29410 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A CWE-20: Improper Input Validation vulnerability exists that could allow an authenticated attacker to gain the same privilege as the application on the server when a malicious payload is provided over HTTP for the server to execute.

Learn more about our Cis Benchmark Audit For Server Software.