Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: May 4, 2023

High
CISA KEV

CVE-2023-29492

Novi SurveyNovi Survey

Novi Survey contains an insecure deserialization vulnerability that allows remote attackers to execute code on the server in the context of the service account.

Required Action

https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx; https://nvd.nist.gov/vuln/detail/CVE-2023-29492

Vulnerability Overview

Severity
High
CISA KEV
Yes
Ransomware
Unknown
Published
Apr 13, 2023
KEV Added
Apr 13, 2023
Due Date
May 4, 2023
Related Articles
0

Vendor

Novi Survey

Novi Survey