Unrated severityNVD Advisory· Published Apr 18, 2023· Updated Feb 12, 2025
CVE-2023-25550
CVE-2023-25550
Description
A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that allows remote code execution via the “hostname” parameter when maliciously crafted hostname syntax is entered.
Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)
Affected products
2<= V7.9.2+ 1 more
- (no CPE)range: <= V7.9.2
- (no CPE)range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.