3 matches found
CVE-2023-46237
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Prior to version 1.5.10, an endpoint intended to offer limited enumeration abilities to authenticated users was accessible to unauthenticated users. This enabled unauthenticated users to discover files and their...
CVE-2023-46237
creationtimestamp| type| source ---|---|--- 2023-10-31 17:21:09+00:00| seen| https://t.me/cibsecurity/73238...
CVE-2023-46237
CVE-2023-46237 affects FOGProject (FOG) prior to version 1.5.10. An endpoint intended for authenticated users to enumerate files was accessible to unauthenticated users, enabling path traversal to files and paths visible to the Apache user group. Version 1.5.10 patches this issue. Remediation: up...