← volver
CVE-2023-40747

CVE-2023-40747

CVSS 7.5 HIGHEPSS 1.0%CWE-22
Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Productos afectados
A.K.I Software · pmman.exe (Enterprise edition)A.K.I Software · pmman.exe (Pro edition)A.K.I Software · pmman.exe (Pro + IMAP4 edition)A.K.I Software · pmman.exe (Standard edition)A.K.I Software · pmman.exe (Standard + IMAP4 edition)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://akisoftware.com/Vulnerability202301.htmlhttps://jvn.jp/en/jp/JVN92720882/