CVE-2023-7300

HIGH Year: 2023
CVSS v3 Score
8.0
High
Weakness Type
CWE-35
View all →

Vulnerability Description

Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the music host file to be deleted or the file permission to be changed.(Vulnerability ID:HWPSIRT-2023-60613)

Related Vulnerabilities

CVE-2023-21415

HIGH
CVSS:8.1(High)

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del.cgi is vulnerable to path traversal attacks that allows for file deletion. This flaw can only be exploi...

CWE-352023

CVE-2023-32714

HIGH
CVSS:8.1(High)

In the Splunk App for Lookup File Editing versions below 4.0.1, a low-privileged user can, with a specially crafted web request, trigger a path traversal exploit that can then be used to read and writ...

CWE-352023

CVE-2024-41973

HIGH
CVSS:8.1(High)

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges.

CWE-352024

CVE-2024-54362

HIGH
CVSS:8.1(High)

Path Traversal vulnerability in NotFound GetShop ecommerce allows Path Traversal. This issue affects GetShop ecommerce: from n/a through 1.3.

CWE-352024

CVE-2025-24685

HIGH
CVSS:8.1(High)

Path Traversal vulnerability in MORKVA Morkva UA Shipping allows PHP Local File Inclusion. This issue affects Morkva UA Shipping: from n/a through 1.0.18.

CWE-352025

CVE-2025-25122

HIGH
CVSS:8.1(High)

Path Traversal vulnerability in NotFound WizShop allows PHP Local File Inclusion. This issue affects WizShop: from n/a through 3.0.2.

CWE-352025