Security Advisory

CVE-2023-39001

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-09 00:00:00

Last updated 2024-10-10 15:34:31

Assigner mitre

State PUBLISHED

Description

A command injection vulnerability in the component diag_backup.php of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbitrary commands via a crafted backup configuration file.

← Browse all CVEs View on cve.org ↗