CVE-2023-41787

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 23, 2023

Updated: Nov 29, 2023

CWE ID 427

Summary

CVE-2023-41787 is a critical vulnerability affecting Pandora FMS versions 700 through 772. This issue involves an Uncontrolled Search Path Element vulnerability, which allows attackers to manipulate the configuration file search paths. By leveraging this flaw, malicious actors can gain unauthorized access to sensitive files, potentially leading to significant data breaches. This vulnerability underscores the importance of keeping software up to date and implementing strict access controls to mitigate potential threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Artica Pandora Fms

Affected Vendors

Artica

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/shzLlK
https://www.cve.org/CVERecord?id=CVE-2023-41787
https://nvd.nist.gov/vuln/detail/CVE-2023-41787

Back to Vulnerability Database