CVE-2023-37469
24.08.2023, 23:15
CasaOS is an open-source personal cloud system. Prior to version 0.4.4, if an authenticated user using CasaOS is able to successfully connect to a controlled SMB server, they are able to execute arbitrary commands. Version 0.4.4 contains a patch for the issue.
| Vendor | Product | Version |
|---|---|---|
| icewhale | casaos | 𝑥 < 0.4.4 |
𝑥
= Vulnerable software versions
References