CVE-2023-40747

2024-03-1801:15:48

[email protected]

web.nvd.nist.gov

directory traversal vulnerability

aki software

pmailserver

remote attacker

arbitrary files access

documentroot

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Directory traversal vulnerability exists in A.K.I Software’s PMailServer/PMailServer2 products’ CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot.

References

akisoftware.com/Vulnerability202301.html

jvn.jp/en/jp/JVN92720882/