CVE-2023-1997

OS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x

Published
2023-08-28

 

Updated 
-

 

Description
An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution.

 

Affected Products
SIMULIA 3DOrchestrate

 

Affected Versions
From Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x

 

Severity
High

Go to Dassault Systèmes Security Advisories