How severe is CVE-2024-54453?

CVE-2024-54453 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-54453

7.5HIGH

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. A path traversal vulnerability in the DocServlet servlet allows remote atta

Published: 12/27/2024Updated: 12/31/2024

Description

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18, and 7.11.x through 7.11.0.15. A path traversal vulnerability in the DocServlet servlet allows remote attackers to retrieve any file from the Kurmi web application installation folder, e.g., files such as the obfuscated and/or compiled Kurmi source code.

AI AnalysisPowered by AI

References

https://kurmi-software.com
https://kurmi-software.com/cve/cve-2024-54453/