Vulnerability Details CVE-2023-2331
Unquoted service Path or Element vulnerability in 42Gears Surelock Windows SureLock Service (NixService.Exe) on Windows application will allows to insert arbitrary code into the service.
This issue affects Surelock Windows : from 2.3.12 through 2.40.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.7%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2023-2331
-
cpe:2.3:a:42gears:surelock:2.11
-
cpe:2.3:a:42gears:surelock:2.12
-
cpe:2.3:a:42gears:surelock:2.14
-
cpe:2.3:a:42gears:surelock:2.16
-
cpe:2.3:a:42gears:surelock:2.18
-
cpe:2.3:a:42gears:surelock:2.19
-
cpe:2.3:a:42gears:surelock:2.20
-
cpe:2.3:a:42gears:surelock:2.21
-
cpe:2.3:a:42gears:surelock:2.22
-
cpe:2.3:a:42gears:surelock:2.23
-
cpe:2.3:a:42gears:surelock:2.25
-
cpe:2.3:a:42gears:surelock:2.26
-
cpe:2.3:a:42gears:surelock:2.28
-
cpe:2.3:a:42gears:surelock:2.29
-
cpe:2.3:a:42gears:surelock:2.3.12
-
cpe:2.3:a:42gears:surelock:2.30
-
cpe:2.3:a:42gears:surelock:2.31
-
cpe:2.3:a:42gears:surelock:2.32
-
cpe:2.3:a:42gears:surelock:2.33
-
cpe:2.3:a:42gears:surelock:2.34
-
cpe:2.3:a:42gears:surelock:2.35
-
cpe:2.3:a:42gears:surelock:2.36.0
-
cpe:2.3:a:42gears:surelock:2.37.0
-
cpe:2.3:a:42gears:surelock:2.39.0
-
cpe:2.3:a:42gears:surelock:2.40.0
-
cpe:2.3:a:42gears:surelock:2.5.10
-
cpe:2.3:a:42gears:surelock:2.7
-
cpe:2.3:a:42gears:surelock:2.8
-
cpe:2.3:a:42gears:surelock:2.9