Modeler
1 CVEs
product
Monthly
Camunda Modeler (aka camunda-modeler) through 4.6.0 allows arbitrary file access. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Authentication Bypass
Modeler
NVD
GitHub
CVSS 3.1
9.1
EPSS
1.5%
EPSS 1%
CVSS 9.1
CRITICAL
POC
Act Now
Camunda Modeler (aka camunda-modeler) through 4.6.0 allows arbitrary file access. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Authentication Bypass
Modeler
NVD
GitHub