Vulnerabilities

CVE-2023-37932

by Fred · 10/01/2024

An improper limitation of a pathname to a restricted directory (‘path traversal’) vulnerability [CWE-22] in FortiVoiceEntreprise version 7.0.0 and before 6.4.7 allows an authenticated attacker to read arbitrary files from the system via sending crafted HTTP or HTTPS requests

Date published : 2024-01-10

https://fortiguard.com/psirt/FG-IR-23-219

Similar

Tags: Cybersecurity Alert