Lucene search
HistoryJun 07, 2023 - 10:15 p.m.
CVE-2023-29502
vuforia
project
resourcedirectory
attribute
vulnerability
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
6.5 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
19.0%
Before importing a project into Vuforia, a user could modify the
“resourceDirectory” attribute in the appConfig.json file to be a
different path.
Affected configurations
Node
ptcvuforia_studioRange<9.9
Related
cve
cve
CVE-2023-29502
2023-06-07 22:15:09
cvelist
cvelist
CVE-2023-29502 PTC Vuforia Studio Path Traversal
2023-06-07 21:50:29
prion
prion
Path traversal
2023-06-07 22:15:00
ics
ics
PTC Vuforia Studio
2023-05-11 12:00:00
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
6.5 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
19.0%
Related for NVD:CVE-2023-29502