OPSWAT MetaDefender Core (MDCore) 5.1.2 Filename Enumeration Vulnerability

CVE-2022-32273 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core (MDCore) before 5.1.2 could allow an authenticated user to enumerate filenames on the server.

Learn more about our Cis Benchmark Audit For Server Software.