CVE-2023-46157:

0.0 CVSS

Description

File-Manager in MGT CloudPanel 2.0.0 through 2.3.2 allows the lowest privilege user to achieve OS command injection by changing file ownership and changing file permissions to 4755.

Classification

CVE ID: CVE-2023-46157

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: n/a

Product: n/a

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.11% (probability of being exploited)

EPSS Percentile: 44.51% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://www.cloudpanel.io/docs/v2/changelog/
https://www.mgt-commerce.com/docs/mgt-cloudpanel/dashboard

Timeline

2024-11-27 14:41:26 UTC
CVE