Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which could allow an attacker to perform an arbitrary download of files from the system via the "Download file" parameter.
History

Thu, 19 Sep 2024 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: INCIBE

Published: 2023-10-04T10:53:36.243Z

Updated: 2024-09-19T19:23:44.411Z

Reserved: 2023-07-05T07:49:47.301Z

Link: CVE-2023-3512

cve-icon Vulnrichment

Updated: 2024-08-02T06:55:03.662Z

cve-icon NVD

Status : Modified

Published: 2023-10-04T11:15:10.363

Modified: 2024-11-21T08:17:25.680

Link: CVE-2023-3512

cve-icon Redhat

No data.