Vulnerabilities > CVE-2023-32757 - Unspecified vulnerability in Edetw U-Office Force 20.0.7668D

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

edetw

NVD

Published: 2023-08-25

Updated: 2024-11-21

Summary

e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker without logging the service can exploit this vulnerability to upload arbitrary files to perform arbitrary command or disrupt service.

Vulnerable Configurations

Part	Description	Count
Application	Edetw Edetw U Office Force 20.0.7668D	1

References

https://www.twcert.org.tw/tw/cp-132-7330-94442-1.html
https://www.twcert.org.tw/tw/cp-132-7330-94442-1.html