CVE-2023-43256

CVE-2023-43256

EPSS 0.7%

A path traversal in Gladys Assistant v4.26.1 and below allows authenticated attackers to extract sensitive files in the host machine by exploiting a non-sanitized user input.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.moku.fr/cves/CVE-2023-43256/https://blog.moku.fr/cves/CVE-unassigned/https://github.com/GladysAssistant/Gladys/commit/f27d0ea4689c3deca5739b5f9ed45a2ddbf00b7b