CVE-2023-30967

Опубликовано: 26 окт. 2023

Источник: nvd

CVSS3: 9.8

CVSS3: 7.5

EPSS Низкий

Описание

Gotham Orbital-Simulator service prior to 0.692.0 was found to be vulnerable to a Path traversal issue allowing an unauthenticated user to read arbitrary files on the file system.

Ссылки

https://palantir.safebase.us/?tcuUid=8fd5809f-26f8-406e-b36f-4a6596a19d79
Vendor Advisory
https://palantir.safebase.us/?tcuUid=8fd5809f-26f8-406e-b36f-4a6596a19d79
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:palantir:orbital_simulator:*:*:*:*:*:*:*:*

Версия до 0.692.0 (исключая)

EPSS

Процентиль: 66%

0.00514

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-7frm-v438-mwmg

CVSS3: 9.8

github

больше 2 лет назад

Gotham Orbital-Simulator service prior to 0.692.0 was found to be vulnerable to a Path traversal issue allowing an unauthenticated user to read arbitrary files on the file system.

EPSS

Процентиль: 66%

0.00514

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS3

Дефекты

CWE-22