Information Disclosure Vulnerability in TopoGrafix DataPlugin for GPX

Information Disclosure Vulnerability in TopoGrafix DataPlugin for GPX

CVE-2023-5136 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file.

Learn more about our User Device Pen Test.