rodolfomarianocy/Unauthenticated-RCE-FUXA-CVE-2023-33831

Releases0

Stars8

Description and exploit of CVE-2023-33831 affecting FUXA web-based Process Visualization (SCADA/HMI/Dashboard) software.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-33831 ↗	Sep 18, 2023Monday, 18 September 2023, 20:15	9.8 CRITICAL	—
A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request.