CVE Vulnerabilities

CVE-2023-51948

Published: Jan 19, 2024 | Modified: Jan 25, 2024

CVSS 3.x

7.5

HIGH

Source:

NVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-51948
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

A Site-wide directory listing vulnerability in /fm in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to list the files hosted by the web application.

Affected Software

Name	Vendor	Start Version	End Version
Actinas_sl_2u-8_rdx_firmware	Actidata	3.2.03-sp1 (including)	3.2.03-sp1 (including)

References

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.