CVE-2023-6190: Authenicated Path Traversal in İzmir Katip Çelebi University

9.8 CVSS

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal.This issue affects University Information Management System: before 30.11.2023.

Classification

CVE ID: CVE-2023-6190

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.8

Affected Products

Vendor: İzmir Katip Çelebi University

Product: University Information Management System

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.17% (probability of being exploited)

EPSS Percentile: 54.64% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://www.usom.gov.tr/bildirim/tr-23-0736

Timeline

2024-11-28 00:11:42 UTC
CVE

Authenicated Path Traversal in İzmir Katip Çelebi University