{"vulnerability": "CVE-2023-25550", "sightings": [{"uuid": "c1ac661b-be9a-4141-bc58-aaeb673eccc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25550", "type": "seen", "source": "https://t.me/cibsecurity/62400", "content": "\u203c CVE-2023-25550 \u203c\n\nA CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists that allows remote code execution via the \u00e2\u20ac\u0153hostname\u00e2\u20ac\ufffd parameter when maliciously crafted hostname syntax is entered. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-19T00:29:44.000000Z"}]}