DSM 2022.2 SU2 and all prior versions allows a local low privileged account to execute arbitrary OS commands as the DSM software installation user.
Metrics
Affected Vendors & Products
References
History
Wed, 09 Oct 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2023-08-10T19:07:44.291Z
Updated: 2024-10-09T19:31:11.852Z
Reserved: 2023-03-10T19:36:27.052Z
Link: CVE-2023-28129
Vulnrichment
Updated: 2024-08-02T12:30:24.334Z
NVD
Status : Modified
Published: 2023-08-10T20:15:09.657
Modified: 2024-11-21T07:54:27.773
Link: CVE-2023-28129
Redhat
No data.