8.8
CVE-2023-24217
- EPSS 1.53%
- Veröffentlicht 06.03.2023 22:15:09
- Zuletzt bearbeitet 06.03.2025 22:15:34
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
AgileBio Electronic Lab Notebook v4.234 was discovered to contain a local file inclusion vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Agilebio ≫ Electronic Lab Notebook Version4.234
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.53% | 0.802 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
The PHP application receives input from an upstream component, but it does not restrict or incorrectly restricts the input before its usage in "require," "include," or similar functions.