ITPison OMICARD EDM has a path traversal vulnerability within its parameter “FileName” in a specific function. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: twcert

Published: 2023-12-15T04:27:26.842Z

Updated: 2024-08-02T21:30:35.123Z

Reserved: 2023-11-16T03:49:45.971Z

Link: CVE-2023-48373

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-15T05:15:08.153

Modified: 2024-11-21T08:31:35.477

Link: CVE-2023-48373

cve-icon Redhat

No data.