Metabase - Remote Code Execution CVE-2023-38646
- Severity
- CVSSv3 Score
- 9.8
- Vulnerability description
- Not available
- Risk description
- Not available
- Exploit capabilities
Sniper can gain unauthenticated Remote Code Execution on the target system and extract multiple artefacts as evidence.
- Recommendation
- Not available
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- Sniper
- Exploitable with Sniper
- Yes
- CVE Published
- Jul 21, 2023
- Detection added at
- Software Type
- Data instrumentation, visualization, and querying
- Vendor
- Metabase
- Product
- Metabase
Detect this vulnerability now!
Check your clients' targets (or your own) for this vulnerability and thousands more! Get proof for validation with our ethical hacking toolkit.