CVE-2023-1970 Report - Details, Severity, & Advisories
Twinagte Team
•
Apr 11, 2024
CVE-2023-1970 is a problematic vulnerability found in yuan1994 tpAdmin 1.3.12, affecting the Upload function of a specific file. This issue allows for unrestricted file uploads, which can impact the confidentiality, integrity, and availability of the affected system. The vulnerability has a severity rating of 7.2 HIGH according to NIST and 6.3 MEDIUM according to VulDB.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if your system is running yuan1994 tpAdmin 1.3.12. This vulnerability specifically impacts the Upload function of the file application\\admin\\controller\\Upload.php
in this version. If your system uses this version of tpAdmin, it's likely to be affected. Unfortunately, there's no information available about affected Apple product versions. Keep in mind that this vulnerability only affects products that are no longer supported by the maintainer.
What should I do if I'm affected?
If you're affected by the vulnerability, there's no known mitigation. It's recommended to replace the affected yuan1994 tpAdmin 1.3.12 with an alternative product. Ensure you keep your software updated and follow security best practices to minimize risks from vulnerabilities.
Is CVE-2023-1970 in CISA’s Known Exploited Vulnerabilities Catalog?
The CVE-2023-1970 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This issue affects yuan1994 tpAdmin 1.3.12 and allows unrestricted file uploads, potentially compromising the affected system. The vulnerability was disclosed on April 10, 2023, and an exploit is publicly available. However, there are no known countermeasures or required actions provided for this vulnerability.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-434, which involves unrestricted file uploads in yuan1994 tpAdmin 1.3.12. The issue affects the Upload function and can impact confidentiality, integrity, and availability.
For more details
CVE-2023-1970 is a significant vulnerability affecting yuan1994 tpAdmin 1.3.12, with potential consequences for system confidentiality, integrity, and availability. Despite the availability of a public exploit, no known mitigations exist, and replacing the affected product is advised. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2023-1970 Report - Details, Severity, & Advisories
Twinagte Team
•
Apr 11, 2024
CVE-2023-1970 is a problematic vulnerability found in yuan1994 tpAdmin 1.3.12, affecting the Upload function of a specific file. This issue allows for unrestricted file uploads, which can impact the confidentiality, integrity, and availability of the affected system. The vulnerability has a severity rating of 7.2 HIGH according to NIST and 6.3 MEDIUM according to VulDB.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if your system is running yuan1994 tpAdmin 1.3.12. This vulnerability specifically impacts the Upload function of the file application\\admin\\controller\\Upload.php
in this version. If your system uses this version of tpAdmin, it's likely to be affected. Unfortunately, there's no information available about affected Apple product versions. Keep in mind that this vulnerability only affects products that are no longer supported by the maintainer.
What should I do if I'm affected?
If you're affected by the vulnerability, there's no known mitigation. It's recommended to replace the affected yuan1994 tpAdmin 1.3.12 with an alternative product. Ensure you keep your software updated and follow security best practices to minimize risks from vulnerabilities.
Is CVE-2023-1970 in CISA’s Known Exploited Vulnerabilities Catalog?
The CVE-2023-1970 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This issue affects yuan1994 tpAdmin 1.3.12 and allows unrestricted file uploads, potentially compromising the affected system. The vulnerability was disclosed on April 10, 2023, and an exploit is publicly available. However, there are no known countermeasures or required actions provided for this vulnerability.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-434, which involves unrestricted file uploads in yuan1994 tpAdmin 1.3.12. The issue affects the Upload function and can impact confidentiality, integrity, and availability.
For more details
CVE-2023-1970 is a significant vulnerability affecting yuan1994 tpAdmin 1.3.12, with potential consequences for system confidentiality, integrity, and availability. Despite the availability of a public exploit, no known mitigations exist, and replacing the affected product is advised. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2023-1970 Report - Details, Severity, & Advisories
Twinagte Team
•
Apr 11, 2024
CVE-2023-1970 is a problematic vulnerability found in yuan1994 tpAdmin 1.3.12, affecting the Upload function of a specific file. This issue allows for unrestricted file uploads, which can impact the confidentiality, integrity, and availability of the affected system. The vulnerability has a severity rating of 7.2 HIGH according to NIST and 6.3 MEDIUM according to VulDB.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if your system is running yuan1994 tpAdmin 1.3.12. This vulnerability specifically impacts the Upload function of the file application\\admin\\controller\\Upload.php
in this version. If your system uses this version of tpAdmin, it's likely to be affected. Unfortunately, there's no information available about affected Apple product versions. Keep in mind that this vulnerability only affects products that are no longer supported by the maintainer.
What should I do if I'm affected?
If you're affected by the vulnerability, there's no known mitigation. It's recommended to replace the affected yuan1994 tpAdmin 1.3.12 with an alternative product. Ensure you keep your software updated and follow security best practices to minimize risks from vulnerabilities.
Is CVE-2023-1970 in CISA’s Known Exploited Vulnerabilities Catalog?
The CVE-2023-1970 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog. This issue affects yuan1994 tpAdmin 1.3.12 and allows unrestricted file uploads, potentially compromising the affected system. The vulnerability was disclosed on April 10, 2023, and an exploit is publicly available. However, there are no known countermeasures or required actions provided for this vulnerability.
Weakness enumeration
The weakness enumeration for this vulnerability is categorized as CWE-434, which involves unrestricted file uploads in yuan1994 tpAdmin 1.3.12. The issue affects the Upload function and can impact confidentiality, integrity, and availability.
For more details
CVE-2023-1970 is a significant vulnerability affecting yuan1994 tpAdmin 1.3.12, with potential consequences for system confidentiality, integrity, and availability. Despite the availability of a public exploit, no known mitigations exist, and replacing the affected product is advised. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below.
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions