← Back to CVE List
CVE-2023-40050
Upload profile either
through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec
check command with maliciously crafted profile allows remote code execution.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt