LinkLeong

1 exploit Active since Aug 2023
CVE-2023-37469 WRITEUP HIGH WRITEUP
CasaOS < 0.4.4 - Authenticated Remote Code Execution via SMB Connection
CasaOS is an open-source personal cloud system. Prior to version 0.4.4, if an authenticated user using CasaOS is able to successfully connect to a controlled SMB server, they are able to execute arbitrary commands. Version 0.4.4 contains a patch for the issue.
CVSS 8.8