Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/23 2:12 a.m.7 views

CVE-2023-43802

Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint /upload which handles request with the filename parameter. A user who has the ability to perform HTTP requests to the localhost interface, or is able to bypass the CORS configuration, can...

7.8CVSS6.9AI score0.00354EPSS
Exploits0References1
nvd
nvd
added 2023/10/18 9:15 p.m.47 views

CVE-2023-43802

Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint /upload which handles request with the filename parameter. A user who has the ability to perform HTTP requests to the localhost interface, or is able to bypass the CORS configuration, can...

7.8CVSS7.2AI score0.00354EPSS
Exploits0References3
cve
cve
added 2023/10/18 8:39 p.m.71 views

CVE-2023-43802

Arduino Create Agent is affected by a path traversal vulnerability in the /upload endpoint that processes the filename parameter. A user able to issue HTTP requests to the localhost interface or bypass CORS can escalate privileges to the user running the Arduino Create Agent service via a crafted...

7.8CVSS7.1AI score0.00354EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2023/10/18 8:39 p.m.11 views

CVE-2023-43802 Path traversal in Arduino Create Agent

Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint /upload which handles request with the filename parameter. A user who has the ability to perform HTTP requests to the localhost interface, or is able to bypass the CORS configuration, can...

7.1CVSS6.9AI score0.00354EPSS
Exploits0References3
cvelist
cvelist
added 2023/10/18 8:39 p.m.54 views

CVE-2023-43802 Path traversal in Arduino Create Agent

Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint /upload which handles request with the filename parameter. A user who has the ability to perform HTTP requests to the localhost interface, or is able to bypass the CORS configuration, can...

7.1CVSS7.8AI score0.00354EPSS
Exploits0References3
Rows per page
Query Builder