nvd-json-data-feeds/CVE-2023/CVE-2023-431xx/CVE-2023-43176.json

{
  "id": "CVE-2023-43176",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-10-03T21:15:10.330",
  "lastModified": "2023-10-03T23:55:59.983",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "A deserialization vulnerability in Afterlogic Aurora Files v9.7.3 allows attackers to execute arbitrary code via supplying a crafted .sabredav file."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "http://afterlogic.com",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://aurora.com",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H&version=3.1",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://sec.leonardini.dev/blog/cve-2023-43176-rce_aurora_files/",
      "source": "cve@mitre.org"
    }
  ]
}