8Ara
CVE-2023-43744 | Zultys MX-SE/MX-SE II/MX-E/MX-Virtual/MX250/MX30 prior 16.04 Patch 16109/17.0.10 Patch 17161 Patch Application file os command injection (ATREDIS-2023-0002)
A vulnerability was found in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250 and MX30. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Patch Application Handler. The manipulation of the argument file leads to os command injection. This vulnerability is known as CVE-2023-43744. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.