Login Sign Up

CVE-2023-35850

7.2 HIGH
Remote Code Execution

📋 TL;DR

This vulnerability allows authenticated attackers with administrator or privileged accounts in SUNNET WMPro portal to execute arbitrary system commands through insufficient input filtering in the file management function. This affects organizations using vulnerable versions of SUNNET WMPro portal software.

💻 Affected Systems

Products:
  • SUNNET WMPro portal
Versions: Specific versions not publicly disclosed in available references
Operating Systems: Unknown - likely multiple platforms
Default Config Vulnerable: ⚠️ Yes
Notes: Requires authenticated access with administrator or privileged account privileges

📦 What is this software?

Wmpro by Sun.net

View all CVEs affecting Wmpro →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise allowing attacker to execute arbitrary commands, install malware, exfiltrate data, or disrupt critical services.

🟠

Likely Case

Privileged attackers gaining unauthorized system access, potentially leading to data theft, service disruption, or lateral movement within the network.

🟢

If Mitigated

Limited impact if proper access controls, network segmentation, and monitoring are in place to detect and block command injection attempts.

🌐 Internet-Facing: HIGH
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires authenticated privileged access but command injection is typically straightforward once access is obtained

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in available references

Vendor Advisory: https://www.twcert.org.tw/tw/cp-132-7373-4ef46-1.html

Restart Required: Yes

Instructions:

1. Contact SUNNET vendor for patch information 2. Apply available security updates 3. Restart affected services 4. Verify patch application

🔧 Temporary Workarounds

Input Validation Enhancement

all

Implement strict input validation and sanitization for file management functions

Not applicable - requires code changes

Privilege Reduction

all

Restrict administrator privileges and implement least privilege access controls

Not applicable - requires policy/configuration changes

🧯 If You Can't Patch

  • Implement strict network segmentation to isolate WMPro portal from critical systems
  • Deploy web application firewall (WAF) with command injection detection rules

🔍 How to Verify

Check if Vulnerable:

Check WMPro portal version against vendor advisory and test file management functions for input validation weaknesses

Check Version:

Check vendor documentation for version identification method

Verify Fix Applied:

Verify patch version installation and test that command injection attempts are properly blocked

📡 Detection & Monitoring

Log Indicators:

  • Unusual file management operations
  • Suspicious command execution patterns
  • Multiple failed authentication attempts followed by successful privileged access

Network Indicators:

  • Unusual outbound connections from WMPro server
  • Command and control traffic patterns

SIEM Query:

source="wmpro" AND (event_type="file_upload" OR event_type="file_management") AND command="*"

📊 Metadata

CVE ID: CVE-2023-35850
CVSS v3 Score: 7.2 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-78
Published: September 18, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-35850, you might also want to check these:

CVE-2023-2564 10.0

This CVE describes an OS command injection vulnerability in scanservjs web scanning software that al...

Same vulnerability type (CWE-78)
CVE-2024-58338 10.0

Anevia Flamingo XL 3.2.9 contains a restricted shell escape vulnerability that allows remote attacke...

Same vulnerability type (CWE-78)
CVE-2025-26389 10.0

This critical vulnerability allows unauthenticated remote attackers to execute arbitrary code with r...

Same vulnerability type (CWE-78)