VYPR
Unrated severityNVD Advisory· Published Aug 9, 2023· Updated Aug 2, 2024

CVE-2023-38997

CVE-2023-38997

Description

A directory traversal vulnerability in the Captive Portal templates of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to execute arbitrary system commands as root via a crafted ZIP archive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • OPNsense/OPNsense Community Editiondescription
  • Range: Community < 23.7 / Business < 23.4.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.