CWE-552
Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.
453 vulnerabilities with CWE-552
CVE-2023-3712
MEDIUM
Honeywell Pm43 Firmware < p10.19.050004 - Privilege Escalation
CVSS 6.6
CVE-2023-4588
MEDIUM
Delinea Secret Server <11.4.000002 - Info Disclosure
CVSS 6.8
CVE-2023-4743
LOW
Dreamer CMS <4.1.3 - Info Disclosure
CVSS 3.1
CVE-2023-41717
MEDIUM
Zscaler Proxy <3.6.1.25 - Auth Bypass
CVSS 5.5
CVE-2023-4475
HIGH
ASUSTOR Data Master <4.1.0 - Path Traversal
CVSS 7.5
CVE-2023-38952
HIGH
ZKTeco BioTime <9.0.1 - Privilege Escalation
CVSS 7.5
CVE-2023-38948
HIGH
jizhi CMS 1.9.5 - Code Injection
CVSS 7.2
CVE-2023-37551
MEDIUM
Codesys - Code Injection
CVSS 6.5
CVE-2023-32226
HIGH
Sysaid - Info Disclosure
CVSS 8.3
CVE-2023-29450
HIGH
Zabbix < 5.0.33 - Information Disclosure
CVSS 8.5
CVE-2023-34316
MEDIUM
Delta Electronics InfraSuite Device Master <1.0.7 - Info Disclosure
CVSS 6.5
CVE-2023-2538
MEDIUM
Tyan S5552 BMC <3.00 - Info Disclosure
CVSS 5.8
CVE-2023-34834
MEDIUM
MCL-Net <4.3.5.8788 - Info Disclosure
CVSS 5.3
CVE-2023-36664
HIGH
Artifex Ghostscript <10.01.2 - Privilege Escalation
CVSS 7.8
CVE-2023-29931
CRITICAL
Laravel-s <3.7.35 - Local File Inclusion
CVSS 9.8
CVE-2023-34645
HIGH
jfinal CMS 5.1.0 - Info Disclosure
CVSS 7.5
CVE-2023-2976
MEDIUM
Google Guava <32.0.1 - Info Disclosure
CVSS 5.5
CVE-2023-33568
HIGH
Dolibarr <16.0.5 - Info Disclosure
CVSS 7.5
CVE-2023-32684
LOW
Lima <0.16.0 - Info Disclosure
CVSS 2.7
CVE-2023-31066
CRITICAL
Apache InLong <1.6.0 - Info Disclosure
CVSS 9.1
CVE-2023-31064
HIGH
Apache InLong <1.7.0 - Info Disclosure
CVSS 7.5
CVE-2023-20184
MEDIUM
Cisco DNA Center - RCE
CVSS 5.4
CVE-2023-20183
MEDIUM
Cisco DNA Center - Privilege Escalation
CVSS 5.4
CVE-2023-2766
MEDIUM
Weaver OA 9.5 - Info Disclosure
CVSS 5.3
CVE-2023-29820
MEDIUM
Webroot SecureAnywhere Endpoint Protection CE <23.1 v.9.0.33.39 - I...
CVSS 5.5
Details
Vulnerabilities
453