{"uuid": "1562c054-d071-41a4-acd2-9376010a9b33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28130", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/867", "content": "CVE-2023-28130 : Gaia Portal (LPE) Hostname injection To Remote Code Execution RCE (Readable and attractive)\n\n*Version :\n R80.20SP, R80.30SP, R80.40, R81, R81.10, R81.20\n* Successful exploitation allows an authenticated attacker to execute commands on the operating system.\n* CVSS score : 8.4\nReferences : https://support.checkpoint.com/results/sk/sk181311\n\nPoC : https://pentests.nl/pentest-blog/cve-2023-28130-command-injection-in-check-point-gaia-portal/", "creation_timestamp": "2023-08-28T22:46:48.000000Z"}