Unrated severityNVD Advisory· Published Oct 10, 2023· Updated Sep 19, 2024

CVE-2023-44827

Description

An issue in ZenTao Community Edition v.18.6 and before, ZenTao Biz v.8.6 and before, ZenTao Max v.4.7 and before allows an attacker to execute arbitrary code via a crafted script to the Office Conversion Settings function.

Affected products

ZenTao/ZenTao Community Editiondescription
Easysoft/ZenTao Community Editionllm-create
Range: <=18.6
Easysoft/ZenTao Bizllm-create
Range: <=8.6
Easysoft/ZenTao Maxllm-create
Range: <=4.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

spotted-topaz-6aa.notion.site/Zentao-Authorized-Remote-Code-Execution-Vulnerability-CVE-2023-44827-be731cbe8607496cae35c08cb9ba2436mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000