Aqua Drive, in its 2.4 version, is vulnerable to a relative path traversal vulnerability. By exploiting this vulnerability, an authenticated non privileged user could access/modify stored resources of other users. It could also be possible to access and modify the source and configuration files of the cloud disk platform, affecting the integrity and availability of the entire platform.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-10-04T10:56:36.903Z
Updated: 2024-09-19T19:22:08.623Z
Reserved: 2023-07-17T07:36:44.415Z
Link: CVE-2023-3701
Vulnrichment
Updated: 2024-08-02T07:01:57.365Z
NVD
Status : Modified
Published: 2023-10-04T11:15:10.430
Modified: 2024-11-21T08:17:52.610
Link: CVE-2023-3701
Redhat
No data.