Lucene search
GoogleOSV:CVE-2023-41599HistorySep 19, 2023 - 2:15 a.m.
CVE-2023-41599
2023-09-1902:15:58
Google
osv.dev
5
jfinalcms v5.0.0
directory traversal
component issue
cve-2023-41599
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.5%
An issue in the component /common/DownController.java of JFinalCMS v5.0.0 allows attackers to execute a directory traversal.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jfinal_cms | eq | 5.0.0 | |
| jfinal_cms | eq | 4.1.0 | |
| jfinal_cms | eq | 4.1.3 | |
| jfinal_cms | eq | 2.0.0 | |
| jfinal_cms | eq | 1.4 | |
| jfinal_cms | eq | 3.1.1 | |
| jfinal_cms | eq | 4.3.0 | |
| jfinal_cms | eq | 1.4.1 | |
| jfinal_cms | eq | 1.4.2 | |
| jfinal_cms | eq | 4.5.0 |
Related
nvd
nvd
CVE-2023-41599
2023-09-19 02:15:58
cnvd
cnvd
JFinalCMS Directory Traversal Vulnerability
2023-09-20 00:00:00
cve
cve
CVE-2023-41599
2023-09-19 02:15:58
prion
prion
Directory traversal
2023-09-19 02:15:00
cvelist
cvelist
CVE-2023-41599
2023-09-19 00:00:00
nuclei
nuclei
JFinalCMS v5.0.0 - Directory Traversal
2024-06-25 10:36:39
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.5%
Related for OSV:CVE-2023-41599