Remote Code Execution Vulnerability in Novi Survey

Remote Code Execution Vulnerability in Novi Survey

CVE-2023-29492 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in the context of the service account. This does not provide access to stored survey or response data.

Learn more about our Cis Benchmark Audit For Server Software.