ГлавнаяУязвимости → CVE-2023-45723
7.6высокая

CVE-2023-45723

Описание

HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability.  Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.

Затрагиваемое ПО
Hcltech Dryice myxalytics
CVSS
Балл7.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Источники
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0109608https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0109608