CVE-2023-39548

CVE-2023-39548

Vendor Nec Corporation
Product CLUSTERPRO X (EXPRESSCLUSTER X)
Weakness CWE-434 · Unrestricted file upload
Published November 17, 2023
Last update December 2, 2024

CVSS base score

What the vulnerability does

01Description

CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, CLUSTERPRO X SingleServerSafe 5.1 and earlier, EXPRESSCLUSTER X SingleServerSafe 5.1 and earlier allows a attacker to log in to the product may execute an arbitrary command.

Key dates

02Disclosure timeline

November 17, 2023 CVE published
December 2, 2024 Record updated