Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-2909
HistoryMay 31, 2023 - 10:15 a.m.

Design/Logic Flaw

2023-05-3110:15:00
PRIOn knowledge base
www.prio-n.com
9
design flaw
logic flaw
ez sync service
user input
attacker
directory traversal
file deletion
adm 4.0.6.reg2
adm 4.1.0
adm 4.2.1.rge2
nvd

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.2%

JSON

EZ Sync service fails to adequately handle user input, allowing an attacker to navigate beyond the intended directory structure and delete files. Affected products and versions include: ADM 4.0.6.REG2, 4.1.0 and below as well as ADM 4.2.1.RGE2 and below.

CPENameOperatorVersion
admge4.2.0
admle4.2.1.
admge4.1.0
admle4.1.0
admge4.0.0
admle4.0.6.

Related

cvelist 1
cve 1
nvd 1
cvelist
cvelist
CVE-2023-2909 A Directory traversal vulnerability was found on EZ Sync service of ADM
2023-05-31 09:26:31
cve
cve
CVE-2023-2909
2023-05-31 10:15:09
nvd
nvd
CVE-2023-2909
2023-05-31 10:15:09

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.2%

JSON
Related for PRION:CVE-2023-2909
cvelist1cve1nvd1