CVE-2023-39026

Name of the Vulnerable Software and Affected Versions FileMage Gateway Windows Deployments versions 1.10.8 and before

Description The issue allows a remote attacker to obtain sensitive information via a crafted request to the "/mgmt/" component. This is a Directory Traversal vulnerability, which can be exploited by sending a specifically designed request to the mentioned component.

Recommendations For versions 1.10.8 and before, update to a version later than 1.10.8 to resolve the issue. As a temporary workaround, consider restricting access to the "/mgmt/" component to minimize the risk of exploitation.