Lucene search
K

4 matches found

Circl
Circl
added 2023/03/15 9:29 p.m.7 views

CVE-2023-25804

creationtimestamp| type| source ---|---|--- 2023-03-15 21:29:58+00:00| seen| https://t.me/cibsecurity/60074...

7.5CVSS5.5AI score0.00761EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/15 5:39 p.m.8 views

CVE-2023-25804 Roxy-WI vulnerable to Limited Path Traversal in name parameter

Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.5.0 have a limited path traversal vulnerability. An SSH key can be saved into an unintended location, for example the /tmp folder using a payload ../../../../../tmp/test111dev. This issue...

7.5CVSS7.5AI score0.00761EPSS
Exploits1References1
OSV
OSV
added 2023/03/15 5:39 p.m.18 views

CVE-2023-25804 Roxy-WI vulnerable to Limited Path Traversal in name parameter

Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.5.0 have a limited path traversal vulnerability. An SSH key can be saved into an unintended location, for example the /tmp folder using a payload ../../../../../tmp/test111dev. This issue...

7.5CVSS5.5AI score0.00761EPSS
Exploits1References3
CVE
CVE
added 2023/03/15 5:39 p.m.94 views

CVE-2023-25804

CVE-2023-25804 affects Roxy-WI web interface for managing Haproxy, Nginx, Apache, and Keepalived. The vulnerability is a limited path traversal in the name parameter that allows an SSH key to be saved to an unintended location (for example, /tmp) using a payload such as ../../../../../tmp/test111...

7.5CVSS6AI score0.00761EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder