CVE-2023-41290

CVSS 3.1 Score 4.1 of 10 (medium)

Details

Published Apr 26, 2024

CWE ID 22

Summary

CVE-2023-41290 is a newly disclosed vulnerability affecting QuFirewall. This issue is classified as a path traversal vulnerability, which can enable authenticated administrators to access files outside of the intended directory. By manipulating file paths, attackers could potentially read sensitive data, posing a security risk via a network. The vulnerability has been addressed in QuFirewall version 2.4.1, released on 2024/02/01. All users are strongly encouraged to update their software to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/se3nn_
https://www.cve.org/CVERecord?id=CVE-2023-41290
https://nvd.nist.gov/vuln/detail/CVE-2023-41290

Back to Vulnerability Database

CVE-2023-41290

CVSS 3.1 Score 4.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations