Path Traversal in Ozeki Ltd. Sms Gateway
CVE-2023-7327
Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability. Successful exploitation allows an unauthenticated attacker to use URL-encoded traversal sequences to read arbitrary files from the underlying f…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.020 (77.8th percentile) — read the EPSS interpretation.
Affected products
- Ozeki Ltd. Sms Gateway — versions 0
Weakness classification (CWE)
References
- disclosure@vulncheck.com (exploit)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)