CVE-2023-35801

CVSS Score of 10 (low)

Details

Published Jun 23, 2023
Updated: Jul 5, 2023
CWE ID 22

Summary

CVE-2023-35801 is a directory traversal vulnerability that affects Safe Software FME Server versions before 2022.2.5. It allows an attacker with write privileges to bypass validation and read/write arbitrary files through a network-based resource connection. The vulnerability has a CVSS score of 8.1 (high severity) and poses a potential danger to organizations as it could lead to unauthorized access and manipulation of sensitive files. Remediation involves upgrading to the fixed version, FME Flow 2023.0.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-35801 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options