Security Advisory

CVE-2023-4516

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-14 08:54:53

Last updated 2025-02-27 20:52:17

Assigner schneider

State PUBLISHED

Description

A CWE-306: Missing Authentication for Critical Function vulnerability exists in the IGSS Update Service that could allow a local attacker to change update source, potentially leading to remote code execution when the attacker force an update containing malicious content.

← Browse all CVEs View on cve.org ↗