CVE-2023-26469

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 17, 2023
Updated: Aug 23, 2023
CWE ID 22

Summary

CVE-2023-26469 is a newly discovered vulnerability affecting Jorani version 1.0.0. This issue allows an attacker to exploit a path traversal flaw, enabling unauthorized access to files and potentially executing malicious code on the server. An attacker could manipulate the input to bypass security restrictions and navigate outside the intended directory structure to reach sensitive files. The vulnerability poses a significant risk and requires immediate remediation to prevent potential data breaches or code injection attacks. It is recommended that users update to the latest version of Jorani as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share