← back
CVE-2023-36969

CVE-2023-36969

EPSS 49.3%
Vexday Risk Score
30Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 49.3%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
07 Jun 2023Metasploit module available
06 Jul 2023Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
CMS Made Simple v2.2.17 is vulnerable to Remote Command Execution via the File Upload Function.
Affected products
n/a · n/a