High severityNVD Advisory· Published Oct 10, 2023· Updated Sep 18, 2024
CVE-2023-45312
CVE-2023-45312
Description
In the mtproto_proxy (aka MTProto proxy) component through 0.7.2 for Erlang, a low-privileged remote attacker can access an improperly secured default installation without authenticating and achieve remote command execution ability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mtproto_proxyHex | <= 0.7.2 | — |
Affected products
2- Erlang/mtproto_proxydescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-738q-mc72-2q22ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-45312ghsaADVISORY
- medium.com/@_sadshade/almost-2000-telegram-proxy-servers-are-potentially-vulnerable-to-rce-since-2018-742a455be16bghsaWEB
- medium.com/%40_sadshade/almost-2000-telegram-proxy-servers-are-potentially-vulnerable-to-rce-since-2018-742a455be16bmitre
News mentions
0No linked articles in our index yet.