CVE-2023-43762
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
Certain WithSecure products allow Unauthenticated Remote Code Execution via the web server (backend). This affects WithSecure Policy Manager 15 and Policy Manager Proxy 15.
Ciertos productos WithSecure permiten la Ejecución Remota de Código No Autenticado a través del servidor web (backend). Esto afecta a WithSecure Policy Manager 15 y Policy Manager Proxy 15.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-09-22 CVE Reserved
- 2023-09-22 CVE Published
- 2024-09-25 CVE Updated
- 2024-10-24 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://www.withsecure.com/en/support/security-advisories/cve-2023-43762 | ||
| https://www.withsecure.com/en/support/security-advisories/cve-2023-nnn511 | Broken Link |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.withsecure.com/en/support/security-advisories | 2023-10-13 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Withsecure Search vendor "Withsecure" | F-secure Policy Manager Search vendor "Withsecure" for product "F-secure Policy Manager" | 15.00 Search vendor "Withsecure" for product "F-secure Policy Manager" and version "15.00" | linux_kernel |
Affected
| ||||||
| Withsecure Search vendor "Withsecure" | F-secure Policy Manager Search vendor "Withsecure" for product "F-secure Policy Manager" | 15.00 Search vendor "Withsecure" for product "F-secure Policy Manager" and version "15.00" | windows |
Affected
| ||||||
| Withsecure Search vendor "Withsecure" | Policy Manager Proxy Search vendor "Withsecure" for product "Policy Manager Proxy" | 15.00 Search vendor "Withsecure" for product "Policy Manager Proxy" and version "15.00" | linux_kernel |
Affected
| ||||||
| Withsecure Search vendor "Withsecure" | Policy Manager Proxy Search vendor "Withsecure" for product "Policy Manager Proxy" | 15.00 Search vendor "Withsecure" for product "Policy Manager Proxy" and version "15.00" | windows |
Affected
| ||||||