CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-33871

Iagona ScrutisWeb versions 2.1.37 and prior are vulnerable to a directory traversal vulnerability that could allow an unauthenticated user to directly access any file outside the webroot.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.5%

CVSS Severity

CVSS v3 Score 7.5

References

https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-03
https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-03

Products affected by CVE-2023-33871

Iagona » Scrutisweb » Version: 2.1.37

cpe:2.3:a:iagona:scrutisweb:2.1.37

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-33871

Products

Pricing

Contact Us