Severity
High
Analysis Summary
CVE-2023-29380
Linux Mint Warpinator could allow a remote attacker to traverse directories on the system, caused by improper validation of user request. An attacker could send a specially crafted URL request containing “dot dot” sequences (/../) to delete arbitrary files on the system.
Impact
- Information Theft
Indicators Of Compromise
CVE
- CVE-2023-29380
Affected Vendors
Linux
Affected Products
- Linux Mint Warpinator 1.0.7
Remediation
Refer to Warpinator GIT Repository for patch, upgrade or suggested workaround information.