CVE-2023-32767

CVSS V2 None CVSS V3 None

Description

The web interface of Symcon IP-Symcon before 6.3 (i.e., before 2023-05-12) allows a remote attacker to read sensitive files via .. directory-traversal sequences in the URL.

Overview

CVE ID
CVE-2023-32767

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-17T20:15:10

Last Modified Date
2023-05-17T20:15:10

References

Reference URL	Reference Tags
https://community.symcon.de/t/ip-symcon-6-3-stable-changelog/40276/87
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-014.txt

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-32767
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32767

History

Created	Old Value	New Value	Data Type	Notes
2023-05-17 21:01:09				Added to TrackCVE