CVE-2023-43256

Name of the Vulnerable Software and Affected Versions Gladys Assistant versions 4.26.1 and below

Description A path traversal issue allows authenticated attackers to extract sensitive files in the host machine by exploiting a non-sanitized user input.

Recommendations For versions 4.26.1 and below, update to a version above 4.26.1 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files on the host machine until a patch is available. Avoid using non-sanitized user input in the affected functionality until the issue is resolved.