Security Advisory

CVE-2023-34394

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-19 21:55:31

Last updated 2024-10-28 14:19:36

Assigner icscert

State PUBLISHED

Description

In Keysight Geolocation Server v2.4.2 and prior, an attacker could upload a specially crafted malicious file or delete any file or directory with SYSTEM privileges due to an improper path validation, which could result in local privilege escalation or a denial-of-service condition.

← Browse all CVEs View on cve.org ↗