{"uuid": "d35278d5-70ce-407b-b558-623c3f8d331b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25539", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1077", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-25539\n\ud83d\udd39 Description: \nDell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. This is a high severity vulnerability as the exploitation allows an attacker to take complete control of a system, so Dell recommends customers to upgrade at the earliest opportunity.\n\n\n\ud83d\udccf Published: 2023-05-31T04:50:27.879Z\n\ud83d\udccf Modified: 2025-01-09T20:39:14.030Z\n\ud83d\udd17 References:\n1. https://www.dell.com/support/kbdoc/en-us/000211267/dsa-2023-060-dell-networker-security-update-for-an-nsrcapinfo-vulnerability", "creation_timestamp": "2025-01-09T21:16:03.000000Z"}