exploitDog

GHSA-5fx5-p3qx-6q26

Опубликовано: 16 сент. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.

An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.

Ссылки

EPSS

Процентиль: 100%

0.93431

Критический

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2024-46938

CVSS3: 7.5

nvd

больше 1 года назад

An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.

EPSS

Процентиль: 100%

0.93431

Критический

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200