CVE-2023-1997
OS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x
An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Dassault Systèmes · SIMULIA 3DOrchestrateQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://www.3ds.com/vulnerability/advisories