4
CVSSv2

CVE-2021-36233

Published: 31/08/2021 Updated: 08/09/2021
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Vulnerability Summary

The function AdminGetFirstFileContentByFilePath in MIK.starlight 7.9.5.24363 allows (by design) an authenticated malicious user to read arbitrary files from the filesystem by specifying the file path.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

unit4 mik.starlight 7.9.5.24363