| |
Vulnerability CVE-2023-23907
Published: 2023-07-06
| Description: |
A directory traversal vulnerability exists in the server.js start functionality of Milesight VPN v2.0.2. A specially-crafted network request can lead to arbitrary file read. An attacker can send a network request to trigger this vulnerability. |
Type:
CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))
References: |
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1702
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
