How severe is CVE-2023-34394?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2023-34394?

This is classified as CWE-23, which is a common weakness in software security.

CVE-2023-34394

HIGH Year: 2023

CVSS v3 Score

7.8

High

Weakness Type

CWE-23

View all →

Vulnerability Description

In Keysight Geolocation Server v2.4.2 and prior, an attacker could upload a specially crafted malicious file or delete any file or directory with SYSTEM privileges due to an improper path validation, which could result in local privilege escalation or a denial-of-service condition.

CVE-2021-29100

HIGH

CVSS:7.8(High)

A path traversal vulnerability exists in Esri ArcGIS Earth versions 1.11.0 and below which allows arbitrary file creation on an affected system through crafted input. An attacker could exploit this vu...

CWE-232021

CVE-2021-43555

HIGH

CVSS:7.8(High)

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may ...

CWE-232021

CVE-2022-23531

HIGH

CVSS:7.8(High)

GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to 0.1.5 are vulnerable to Relative Path Traversal when scanning a specially-crafted local PyPI package. Running GuardDog aga...

CWE-232022

CVE-2022-42470

HIGH

CVSS:7.8(High)

A relative path traversal vulnerability in Fortinet FortiClient (Windows) 7.0.0 - 7.0.7, 6.4.0 - 6.4.9, 6.2.0 - 6.2.9 and 6.0.0 - 6.0.10 allows an attacker to execute unauthorized code or commands via...

CWE-232022