CVE-2023-47105
Published
CVSS v3
8.6
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
exec.CommandContext in Chaosblade 0.3 through 1.7.3, when server mode is used, allows OS command execution via the cmd parameter without authentication.
An easy to use and powerful chaos engineering experiment toolkit.(阿里巴巴开源的一款简单易用、功能强大的混沌实验注入工具)
GitHub