Skip to main content

Oxygen Content Fusion

1 CVEs product

Monthly

CVE-2023-26559 MEDIUM This Month

A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Oxygen Content Fusion Oxygen Xml Web Author
NVD
CVSS 3.1
5.3
EPSS
1.0%
EPSS 1% CVSS 5.3
MEDIUM This Month

A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Oxygen Content Fusion Oxygen Xml Web Author
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy