Unrated severityNVD Advisory· Published Apr 18, 2023· Updated Mar 3, 2025
CVE-2023-25549
CVE-2023-25549
Description
A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that allows for remote code execution when using a parameter of the DCE network settings endpoint.
Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)
Affected products
2<=V7.9.2+ 1 more
- (no CPE)range: <=V7.9.2
- (no CPE)range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.