1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0 has a patch for this issue.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-08-10T17:42:05.793Z
Updated: 2024-08-02T18:18:10.152Z
Reserved: 2023-08-07T16:27:27.076Z
Link: CVE-2023-39965
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-10T18:15:11.213
Modified: 2023-09-08T16:56:15.427
Link: CVE-2023-39965
Redhat
No data.