Server-side File Access Vulnerability in BigFix WebUI Software Distribution Interface

Server-side File Access Vulnerability in BigFix WebUI Software Distribution Interface

CVE-2023-28023 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

A cross site request forgery vulnerability in the BigFix WebUI Software Distribution interface site version 44 and before allows an NMO attacker to access files on server side systems (server machine and all the ones in its network). 

Learn more about our Web App Pen Testing.