← Back to CVE List

CVE-2023-36622

Published: 2023-07-05T20:15Z
Last Modified: 2024-11-21T08:10Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The websocket configuration endpoint of the Loxone Miniserver Go Gen.2 before 14.1.5.9 allows remote authenticated administrators to inject arbitrary OS commands via the timezone parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt