File Path Enumeration Vulnerability in eSOMS Report Generation

CVE-2023-5514 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

The response messages received from the eSOMS report generation using certain parameter queries with full file path can be abused for enumerating the local file system structure.

Learn more about our Web Application Penetration Testing UK.