CVE-2023-6723

critical

Description

An unrestricted file upload vulnerability has been identified in Repbox, which allows an attacker to upload malicious files via the transforamationfileupload function, due to the lack of proper file type validation controls, resulting in a full system compromise.

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-repox

Details

Source: Mitre, NVD

Published: 2023-12-13

Updated: 2023-12-15

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H