PT-2023-18870 · Synapsoft · Synapsoft Pdfocus

S4Nshine

·

Publicado

2023-05-12

·

Atualizado

2023-05-23

·

CVE-2023-23169

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Synapsoft pdfocus version 1.17
Description The issue concerns local file inclusion and server-side request forgery Directory Traversal.
Recommendations For Synapsoft pdfocus version 1.17, consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available.

Exploit

Correção

SSRF

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-918CWE-22

Identificadores relacionados

CVE-2023-23169

Produtos afetados

Synapsoft Pdfocus