Lucene search
JpcertCVE-2023-43825HistorySep 27, 2023 - 3:19 p.m.
CVE-2023-43825
2023-09-2715:19:34
CWE-22
jpcert
web.nvd.nist.gov
13
cve-2023-43825
shihonkanri plus
vulnerability
path traversal
arbitrary code
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
22.8%
Relative path traversal vulnerability in Shihonkanri Plus Ver9.0.3 and earlier allows a local attacker to execute an arbitrary code by having a legitimate user import a specially crafted backup file of the product…
Affected configurations
Node
ekakinshihonkanri_plusRange≤9.0.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ekakin | shihonkanri_plus | * | cpe:2.3:a:ekakin:shihonkanri_plus:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "EKAKIN",
"product": "Shihonkanri Plus",
"versions": [
{
"version": "Ver9.0.3 and earlier",
"status": "affected"
}
]
}
]Related
jvn
jvn
JVN#17434995: Shihonkanri Plus vulnerable to relative path traversal
2023-09-27 00:00:00
cvelist
cvelist
CVE-2023-43825
2023-09-27 07:14:02
prion
prion
Path traversal
2023-09-27 15:19:00
nvd
nvd
CVE-2023-43825
2023-09-27 15:19:34
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
22.8%
Related for CVE-2023-43825