Lucene search
HistoryFeb 25, 2023 - 2:15 a.m.
CVE-2023-1034
github repository
suitecrm
path traversal
cve-2023-1034
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
38.0%
Path Traversal: ‘..\filename’ in GitHub repository salesagility/suitecrm prior to 7.12.9.
Affected configurations
Node
salesagilitysuitecrmRange<7.12.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| salesagility | suitecrm | * | cpe:2.3:a:salesagility:suitecrm:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-1034 Path Traversal: '\..\filename' in salesagility/suitecrm
2023-02-25 00:00:00
prion
prion
Path traversal
2023-02-25 02:15:00
osv
osv
CVE-2023-1034
2023-02-25 02:15:12
BIT-suitecrm-2023-1034
2024-03-06 11:07:48
huntr
huntr
Limited LFI via Path Traversal
2022-11-29 14:06:33
cve
cve
CVE-2023-1034
2023-02-25 02:15:12
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
38.0%
Related for NVD:CVE-2023-1034