CVE-2023-37532

CVE-2023-37532 affects HCL Commerce Remote Store server. The connected sources describe a directory traversal vulnerability that lets an attacker read arbitrary files on the target system by sending a specially crafted URL. The core issue is a failure to properly sanitize file paths, enabling acc...