4 matches found
CVE-2023-6023
creationtimestamp| type| source ---|---|--- 2024-11-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-12 2024-11-18 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-18 2024-12-13 00:00:00+00:00| exploited| The...
CVE-2023-6023
An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifactpath URL parameter...
CVE-2023-6023 ModelDB Local File Include
An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifactpath URL parameter...
CVE-2023-6023
VertaAI ModelDB is affected by CVE-2023-6023 (Path Traversal/LFI). The Nuclei template identifies the vulnerable endpoint as /api/v1/artifact/getArtifact?artifact_path= with no validation or sanitization of artifact_path, enabling an attacker to read arbitrary files from the server filesystem. Im...