CVE-2023-43322 Information

Description

ZPE Systems Inc Nodegrid OS v5.0.0 to v5.0.17 v5.2.0 to v5.2.19 v5.4.0 to v5.4.16 v5.6.0 to v5.6.13 v5.8.0 to v5.8.10 and v5.10.0 to v5.10.3 was discovered to contain a command injection vulnerability via the endpoint /v1/system/toolkit/files/.

Reference

https://psirt.zpesystems.com/portal/en/kb/articles/security-advisory-zpe-ng-2023-001-12-10-2023