CVE-2023-41629

High

A lack of input sanitizing in the file download feature of eSST Monitoring v2.147.1 allows attackers to execute a path traversal.

mitre·NVD-CWE-noinfo·Published 2023-10-17

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

129 chars

A lack of input sanitizing in the file download feature of eSST Monitoring v2.147.1 allows attackers to execute a path traversal.

NVDen

129 chars

A lack of input sanitizing in the file download feature of eSST Monitoring v2.147.1 allows attackers to execute a path traversal.

NVDes

154 chars

La falta de sanitización de entradas en la función de descarga de archivos de eSST Monitoring v2.147.1 permite a los atacantes ejecutar un path traversal.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N