CVE-2023-43256

Published September 25th, 2023

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

A path traversal in Gladys Assistant v4.26.1 and below allows authenticated attackers to extract sensitive files in the host machine by exploiting a non-sanitized user input.

GladysAssistant/Gladys

A privacy-first, open-source home assistant

GitHub

3.06K