Vulnerability — CVE-2023-34994

CVE-2023-34994

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-34994
Description:: An improper resource allocation vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to creation of an arbitrary directory. An attacker can send a sequence of requests to trigger this vulnerability.
Last updated date:: 09/08/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/08/2023
Reference url to background: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1773

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/08/2023
Reference url to background: https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1773