CVE-2023-30804

CVE-2023-30804

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.

Source: CVE-2023-30804

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다