CVE-2023-47415: Command Injection

Q: What is the severity of CVE-2023-47415?

CVE-2023-47415 is considered a high severity vulnerability due to its potential for OS command injection.

Q: What systems are affected by CVE-2023-47415?

CVE-2023-47415 affects Cypress Solutions CTM-200 versions up to and including 2.7.1.5600.

Q: How do I fix CVE-2023-47415?

To fix CVE-2023-47415, update your Cypress Solutions CTM-200 software to a version later than 2.7.1.5600.

Q: What is OS command injection in CVE-2023-47415?

OS command injection in CVE-2023-47415 allows an attacker to execute arbitrary OS commands through the cli_text parameter.

Q: What are the potential impacts of CVE-2023-47415 exploitation?

Exploitation of CVE-2023-47415 could lead to unauthorized access and control over the affected system.

Published Mar 7, 2024

Updated

Cypress Solutions CTM-200 v2.7.1.5600 and below was discovered to contain an OS command injection vulnerability via the clitext parameter.

Affected Software

3 affected components

Cypress Solutions CTM-200<v2.7.1.5600

All of the following

Cypress Ctm-200 Firmware<=2.7.1.5600-113

Cypress CTM-200

Event History

Mar 7, 2024

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

Description

Data Sourced

via NVD·01:15 AM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2023-47415?

CVE-2023-47415 is considered a high severity vulnerability due to its potential for OS command injection.

What systems are affected by CVE-2023-47415?

CVE-2023-47415 affects Cypress Solutions CTM-200 versions up to and including 2.7.1.5600.

How do I fix CVE-2023-47415?

To fix CVE-2023-47415, update your Cypress Solutions CTM-200 software to a version later than 2.7.1.5600.

What is OS command injection in CVE-2023-47415?

OS command injection in CVE-2023-47415 allows an attacker to execute arbitrary OS commands through the cli_text parameter.

What are the potential impacts of CVE-2023-47415 exploitation?