vulnerability
CVE-2023-39143: Directory Traversal in Authenticated API
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:P/A:C) | Jul 25, 2023 | Aug 10, 2023 | Aug 25, 2023 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:P/A:C)
Published
Jul 25, 2023
Added
Aug 10, 2023
Modified
Aug 25, 2023
Description
This vulnerability allows an attacker with direct server IP access to read, delete, and upload arbitrary files.
Solution
papercut-july-2023-upgrade-to-recommended-version
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.