Vulnerability Details CVE-2023-0582
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ForgeRock Access Management allows Authorization Bypass.
This issue affects access management: before 7.3.0, before 7.2.1, before 7.1.4, through 7.0.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.2%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2023-0582
-
cpe:2.3:a:forgerock:access_management:5.0.0
-
cpe:2.3:a:forgerock:access_management:5.1.0
-
cpe:2.3:a:forgerock:access_management:5.1.1
-
cpe:2.3:a:forgerock:access_management:5.5.0
-
cpe:2.3:a:forgerock:access_management:5.5.1
-
cpe:2.3:a:forgerock:access_management:5.5.2
-
cpe:2.3:a:forgerock:access_management:6.0.0
-
cpe:2.3:a:forgerock:access_management:6.0.0.1
-
cpe:2.3:a:forgerock:access_management:6.0.0.2
-
cpe:2.3:a:forgerock:access_management:6.0.0.3
-
cpe:2.3:a:forgerock:access_management:6.0.0.4
-
cpe:2.3:a:forgerock:access_management:6.0.0.6
-
cpe:2.3:a:forgerock:access_management:6.0.0.7
-
cpe:2.3:a:forgerock:access_management:6.5.0
-
cpe:2.3:a:forgerock:access_management:6.5.0.1
-
cpe:2.3:a:forgerock:access_management:6.5.0.2
-
cpe:2.3:a:forgerock:access_management:6.5.1
-
cpe:2.3:a:forgerock:access_management:6.5.2
-
cpe:2.3:a:forgerock:access_management:6.5.2.1
-
cpe:2.3:a:forgerock:access_management:6.5.2.2
-
cpe:2.3:a:forgerock:access_management:6.5.2.3
-
cpe:2.3:a:forgerock:access_management:6.5.3
-
cpe:2.3:a:forgerock:access_management:6.5.4
-
cpe:2.3:a:forgerock:access_management:7.0.0
-
cpe:2.3:a:forgerock:access_management:7.0.1
-
cpe:2.3:a:forgerock:access_management:7.0.2
-
cpe:2.3:a:forgerock:access_management:7.1.0
-
cpe:2.3:a:forgerock:access_management:7.1.1
-
cpe:2.3:a:forgerock:access_management:7.1.2
-
cpe:2.3:a:forgerock:access_management:7.1.3
-
cpe:2.3:a:forgerock:access_management:7.2.0