exploitDog

GHSA-6mwp-2wph-qmcf

Опубликовано: 12 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

A relative path traversal vulnerability [CWE-23] in FortiSOAR 7.6.0, 7.5.0 through 7.5.1, 7.4 all versions, 7.3 all versions may allow an authenticated attacker to read arbitrary files via uploading a malicious solution pack.

A relative path traversal vulnerability [CWE-23] in FortiSOAR 7.6.0, 7.5.0 through 7.5.1, 7.4 all versions, 7.3 all versions may allow an authenticated attacker to read arbitrary files via uploading a malicious solution pack.

Ссылки

EPSS

Процентиль: 15%

0.00048

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-23

Связанные уязвимости

CVE-2024-48892

CVSS3: 6.8

nvd

6 месяцев назад

A relative path traversal vulnerability [CWE-23] in FortiSOAR 7.6.0, 7.5.0 through 7.5.1, 7.4 all versions, 7.3 all versions may allow an authenticated attacker to read arbitrary files via uploading a malicious solution pack.

EPSS

Процентиль: 15%

0.00048

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-23