CVE-2023-6190
CRITICALUniversity Information Management System <30.11.2023 - Path Traversal
Title source: llmDescription
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023.
References (2)
Core 2
Core References
Third Party Advisory government-resource
broken-link
https://www.usom.gov.tr/bildirim/tr-23-0736
Government Resource government-resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0736
Scores
CVSS v3
9.8
EPSS
0.0076
EPSS Percentile
50.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (2)
ikcu/university_information_management_system
< 30.11.2023
İzmir Katip Çelebi University/University Information Management System
< 30.11.2023
Published
Dec 27, 2023
Tracked Since
Feb 18, 2026