Lucene search

CVE-2023-28435

🗓️ 24 Mar 2023 21:06:15Reported by [email protected]Type

Dataease open source tool file upload vulnerability fixed in v1.18.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2023-28435 Dataease file upload interface does not verify permission or file type	24 Mar 202320:39	–	cvelist
Prion	Unrestricted file upload	24 Mar 202321:15	–	prion
CVE	CVE-2023-28435	24 Mar 202321:15	–	cve
Vulnrichment	CVE-2023-28435 Dataease file upload interface does not verify permission or file type	24 Mar 202320:39	–	vulnrichment
OSV	CVE-2023-28435	24 Mar 202321:15	–	osv

Nvd

Node

dataease dataeaseRange<1.18.5

Source	Link
github	www.github.com/dataease/dataease/security/advisories/GHSA-625h-q3g9-rffc
github	www.github.com/dataease/dataease/issues/4798

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Mar 2023 21:15Current

6.7Medium risk

Vulners AI Score6.7

CVSS36.1

EPSS0.00261

CWE-79