CVE-2023-22581 - White Rabbit Switch - Unauthenticated remote code execution
|Page author||Victor Pasman|
|Problem type(s)||CWE-20 Improper Input Validation|
|Impact(s)||CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs|
|Last modified||12 May 2023 11:55|
White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform system commands under the context of the web application (the default installation makes the webserver run as the root user).