TVN ID |
TVN-202312007 |
CVE ID |
CVE-2023-48378 |
CVSS |
Softnext Mail SQR Expert has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files. |
Affected Products |
Softnext Mail SQR Expert before v230330 |
Description |
Softnext Mail SQR Expert has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files. |
Solution |
Update version to 230430 |
Credit |
Fi Liu(CHT Security) |
Public Date |
2023-12-15 |