Critical severity9.8NVD Advisory· Published Feb 26, 2024· Updated Jun 17, 2026
CVE-2023-49959
CVE-2023-49959
Description
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/start_update endpoint.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Indo-Sol/PROFINET-INspektor NTdescription
- Range: <=2.4.0
Patches
Vulnerability mechanics
References
2- code-white.com/public-vulnerability-list/nvdThird Party Advisory
- www.indu-sol.com/en/products/profinet/diagnostics/profinet-inspektorr-nt/nvdProduct
News mentions
0No linked articles in our index yet.