CVE-2023-3656
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by an unauthenticated remote code execution vulnerability. This vulnerability can be triggered by an HTTP endpoint exposed to the network.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH | cashIT! - serving solutions. | 0 <= 03.A06rks | affected |
Weaknesses
- CWE-749: CWE-749 Exposed Dangerous Method or Function
- CWE-94: CWE-94 Improper Control of Generation of Code ('Code Injection')
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.