CVE-2023-6574
Byzoro Smart S20 HTTP POST Request updateos.php unrestricted upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
A vulnerability was found in Byzoro Smart S20 up to 20231120 and classified as critical. Affected by this issue is some unknown functionality of the file /sysmanage/updateos.php of the component HTTP POST Request Handler. The manipulation of the argument 1_file_upload leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-247154 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Una vulnerabilidad fue encontrada en Beijing Baichuo Smart S20 hasta 20231120 y clasificada como crítica. Una función desconocida del archivo /sysmanage/updateos.php del componente HTTP POST Request Handler es afectada por esta vulnerabilidad. La manipulación del argumento 1_file_upload conduce a una carga sin restricciones. El ataque puede lanzarse de forma remota. El exploit ha sido divulgado al público y puede utilizarse. VDB-247154 es el identificador asignado a esta vulnerabilidad. NOTA: Se contactó primeramente con el proveedor sobre esta divulgación, pero no respondió de ninguna manera.
Eine Schwachstelle wurde in Byzoro Smart S20 bis 20231120 gefunden. Sie wurde als kritisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei /sysmanage/updateos.php der Komponente HTTP POST Request Handler. Mittels Manipulieren des Arguments 1_file_upload mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff über das Netzwerk. Der Exploit steht zur öffentlichen Verfügung.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-12-07 CVE Reserved
- 2023-12-07 CVE Published
- 2024-04-10 EPSS Updated
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
https://vuldb.com/?id.247154 | Technical Description | |
https://vuldb.com/?submit.241172 | Third Party Advisory |
URL | Date | SRC |
---|---|---|
https://github.com/flyyue2001/cve/blob/main/smart_sql_updateos.md | 2024-08-02 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Byzoro Search vendor "Byzoro" | Smart S20 Firmware Search vendor "Byzoro" for product "Smart S20 Firmware" | <= 2023-11-20 Search vendor "Byzoro" for product "Smart S20 Firmware" and version " <= 2023-11-20" | - |
Affected
| in | Byzoro Search vendor "Byzoro" | Smart S20 Search vendor "Byzoro" for product "Smart S20" | - | - |
Safe
|