Vulnerabilities > Generalbytes

DATE CVE VULNERABILITY TITLE RISK
2023-03-22 CVE-2023-28725 Unrestricted Upload of File with Dangerous Type vulnerability in Generalbytes Crypto Application Server 20230120
General Bytes Crypto Application Server (CAS) 20230120, as distributed with General Bytes BATM devices, allows remote attackers to execute arbitrary Java code by uploading a Java application to the /batm/app/admin/standalone/deployments directory, aka BATM-4780, as exploited in the wild in March 2023.
network
low complexity
generalbytes CWE-434
critical
9.1