CVE-2023-38404

CVSS 7.2 · High EPSS 0.15% · P36 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-38404

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Veritas Technologies Infoscale Operations Manager 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Veritas Technologies Infoscale Operations Manager是美国Veritas Technologies公司的一套用于对整个InfoScale部署进行管理的软件。该软件提供多集群管理、定制接口和集中式审计记录等功能。 Veritas Technologies Infoscale Operations Manager (VIOM) 8.0.0.410之前版本存在安全漏洞。攻击者利用该漏洞可以将所有类型的文件上传到服务器，然后执行恶意文件，以在远程服务器上执行命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-38404

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-38404

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-07-17 · 25 CVEs total

CVE-2023-37781		EMQ X 路径遍历漏洞
CVE-2023-38426		Linux kernel 缓冲区错误漏洞
CVE-2023-38427		Linux kernel 数字错误漏洞
CVE-2023-38428		Linux kernel 缓冲区错误漏洞
CVE-2023-38429		Linux kernel 安全漏洞
CVE-2023-38430		Linux kernel 缓冲区错误漏洞
CVE-2023-38431		Linux kernel 缓冲区错误漏洞
CVE-2023-38432		Linux kernel 缓冲区错误漏洞
CVE-2023-38409		Linux kernel 安全漏洞
CVE-2023-28864		Progress Software Chef Infra Server 安全漏洞
CVE-2023-37769		Pixman 数字错误漏洞
CVE-2023-37770		Faust 缓冲区错误漏洞
CVE-2023-31853		Cudy Technology LT400 跨站脚本漏洞
CVE-2021-37384		Furukawa Electric 423-41W/AC 安全漏洞
CVE-2023-38403		iperf3 输入验证错误漏洞
CVE-2023-38405		Crestron 3-Series 安全漏洞
CVE-2022-30858		ngiflib 资源管理错误漏洞
CVE-2023-37791		D-Link DIR-619 缓冲区错误漏洞
CVE-2023-35818		Espressif ESP32 安全漏洞
CVE-2023-36656		Jaeger UI 跨站脚本漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-38404

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-38404

I. Basic Information for CVE-2023-38404

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-38404

III. Intelligence Information for CVE-2023-38404

Same Patch Batch · n/a · 2023-07-17 · 25 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-38404

Leave a comment