Unrated severityNVD Advisory· Published Apr 18, 2023· Updated Feb 5, 2025
CVE-2023-25555
CVE-2023-25555
Description
A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow a user that knows the credentials to execute unprivileged shell commands on the appliance over SSH.
Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)
Affected products
2<=7.9.2+ 1 more
- (no CPE)range: <=7.9.2
- (no CPE)range: All
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.