Path Traversal Vulnerability in Control ID IDSecure 4.7.26.0 and Prior: Arbitrary File Deletion and Denial of Service

Path Traversal Vulnerability in Control ID IDSecure 4.7.26.0 and Prior: Arbitrary File Deletion and Denial of Service

CVE-2023-33369 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

A path traversal vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing attackers to delete arbitrary files on IDSecure filesystem, causing a denial of service.

Learn more about our Web Application Penetration Testing UK.