CVE-2023-41787: Arbitrary File Read
First published: Thu Nov 23 2023(Updated: )
Uncontrolled Search Path Element vulnerability in Pandora FMS on all allows Leveraging/Manipulating Configuration File Search Paths. This vulnerability allows access to files with sensitive information. This issue affects Pandora FMS: from 700 through 772.
Credit: security@pandorafms.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Artica Pandora FMS | >=700<773 |
Remedy
Fixed in v773 and v772.1.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-41787?
CVE-2023-41787 is an Arbitrary File Read vulnerability in Pandora FMS that allows unauthorized access to sensitive information through file manipulation.
How severe is CVE-2023-41787?
CVE-2023-41787 has a severity rating of 7.5 (high).
Which software versions are affected by CVE-2023-41787?
Pandora FMS versions 700 through 772 are affected by CVE-2023-41787.
What is the impact of CVE-2023-41787?
CVE-2023-41787 allows attackers to access files containing sensitive information.
How can the Arbitrary File Read vulnerability in Pandora FMS be fixed?
To fix the Arbitrary File Read vulnerability in Pandora FMS, it is recommended to update to a version higher than 772.
- collector/nvd-api
- agent/title
- agent/type
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/event
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/artica
- canonical/artica pandora fms
- version/artica pandora fms/700