Critical severity9.8NVD Advisory· Published Aug 4, 2023· Updated Jun 17, 2026
CVE-2023-33374
CVE-2023-33374
Description
Connected IO v2.1.0 and prior has a command as part of its communication protocol allowing the management platform to specify arbitrary OS commands for devices to execute. Attackers abusing this dangerous functionality may issue all devices OS commands to execute, resulting in arbitrary remote command execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Connected IO/Connected IOdescription
- Range: <=2.1.0
Patches
Vulnerability mechanics
References
2- claroty.com/team82/disclosure-dashboard/cve-2023-33374nvdThird Party Advisory
- www.connectedio.com/products/routersnvdProduct
News mentions
0No linked articles in our index yet.