Insufficient verification vulnerability exists in Broadcast Mail CGI (pmc.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution privilege.
Metrics
Affected Vendors & Products
References
History
Thu, 07 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-434 | |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: jpcert
Published: 2024-03-18T00:32:49.426Z
Updated: 2024-11-07T16:51:56.297Z
Reserved: 2023-08-29T05:55:01.606Z
Link: CVE-2023-39933

Updated: 2024-08-02T18:18:10.072Z

Status : Awaiting Analysis
Published: 2024-03-18T01:15:48.347
Modified: 2024-11-21T08:16:04.100
Link: CVE-2023-39933

No data.