CVE-2023-4120
Published: 03 August 2023
Summary
CVE-2023-4120 is a medium-severity Command Injection (CWE-77) vulnerability in Byzoro Smart S85F. Its CVSS base score is 6.3 (Medium).
Operationally, ranked in the top 1.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
A command injection vulnerability exists in the Byzoro Smart S85F Management Platform up to version 20230722. The flaw resides in the file importhtml.php, where the sql parameter is insufficiently sanitized, allowing an attacker to inject operating system commands. It is tracked as CVE-2023-4120, assigned CWE-77, and carries a CVSS 3.1 score of 6.3.
An authenticated remote attacker can supply a crafted sql value to the affected endpoint and execute arbitrary commands on the underlying server. Public exploit code has been released, enabling an adversary to achieve limited confidentiality, integrity, and availability impacts without user interaction.
No vendor patch or official advisory has been issued; the supplier was notified prior to disclosure but did not respond. The associated EPSS score currently stands at 0.6283 with a recorded peak of 0.6555, indicating sustained public interest in the published exploit.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-54006
Vulnerability details
A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230722 and classified as critical. This issue affects some unknown processing of the file importhtml.php. The manipulation of the argument sql leads to command injection. The attack may…
more
be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-235967. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.