CVE-2023-39001

Publication date

2023-08-09 00:00:00

Family

mitre

State

PUBLISHED

Description

A command injection vulnerability in the component diag_backup.php of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbitrary commands via a crafted backup configuration file.