CVE-2023-48031

CRITICAL EPSS 69.9%

Published Nov 17, 20232y ago · Modified Jun 17, 20261w ago

9.8 CVSS 3.1

Critical

Published Nov 17, 2023 2y ago

Last Modified Jun 17, 2026 1w ago

Description

OpenSupports v4.11.0 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the comment function, an attacker can bypass security restrictions and upload a .bat file by manipulating the file's magic bytes to masquerade as an allowed type. This can enable the attacker to execute arbitrary code or establish a reverse shell, leading to unauthorized file writes or control over the victim's station via a crafted file upload operation.

CVSS Details

Base Score

9.8

Exploitability

3.9

Impact

5.9

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

69.9% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-434 Unrestricted Upload of File with Dangerous Type Resource Mgmt

Affected Products 1

Vendor	Product	Version	Range
opensupports	opensupports	4.11.0	any

References 3

bugplorer.github.io https://bugplorer.github.io/cve-opensupports/

Broken Link
nitipoom-jar.github.io https://nitipoom-jar.github.io/CVE-2023-48031/

Exploit
nitipoom-jaroonchaipipat.github.io https://nitipoom-jaroonchaipipat.github.io/security-research-portal/2023-48031

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.