CVE-2023-48248 — The vulnerability allows an authenticated remote attacker to upload a malicious file to the SD card containing arbitrary client-side script code and obtain its execution inside a victim’s session via — CVE Database · The Intelligence Room