6.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.1%
A path traversal in Gladys Assistant v4.26.1 and below allows authenticated attackers to extract sensitive files in the host machine by exploiting a non-sanitized user input.
blog.moku.fr/cves/CVE-2023-43256/
blog.moku.fr/cves/CVE-unassigned/
github.com/GladysAssistant/Gladys/commit/f27d0ea4689c3deca5739b5f9ed45a2ddbf00b7b