CVE-2023-30804

Name of the Vulnerable Software and Affected Versions Sangfor Next-Gen Application Firewall version NGAF8.0.17

Description The issue is related to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the "svpn html/loadfile.php" endpoint. This can be exploited by a remote and unauthenticated attacker under certain conditions. The vulnerability is associated with a lack of protection for service data, which can allow a remote attacker to disclose protected information.

Recommendations For Sangfor Next-Gen Application Firewall version NGAF8.0.17, consider restricting access to the "svpn html/loadfile.php" endpoint to minimize the risk of exploitation. As a temporary workaround, consider disabling the use of this endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.