CVE-2023-25266
Published Feb 28, 2023
Last updated 2 years ago
Overview
- Description
- An issue was discovered in Docmosis Tornado prior to version 2.9.5. An authenticated attacker can change the Office directory setting pointing to an arbitrary remote network path. This triggers the execution of the soffice binary under the attackers control leading to arbitrary remote code execution (RCE).
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:docmosis:tornado:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48EC1ECE-07BE-4144-B966-A48D978651CE",
"versionEndExcluding": "2.9.5"
}
],
"operator": "OR"
}
]
}
]