CVE-2023-42227
Published: 13 January 2025
Summary
CVE-2023-42227 is a high-severity Path Traversal (CWE-22) vulnerability in Zucchetti Helpdeskadvanced. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 27.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2023-42227 is a directory traversal vulnerability affecting Pat Infinite Solutions HelpdeskAdvanced in versions up to and including 11.0.33. The flaw exists in the WSCView/Save function, which allows attackers to manipulate file paths and access files outside the intended directory. It has a CVSS v3.1 base score of 7.5, rated as High severity, with vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N, indicating network accessibility, low attack complexity, no required privileges or user interaction, and high impact on confidentiality.
Unauthenticated attackers can exploit this vulnerability remotely over the network by sending crafted requests to the WSCView/Save endpoint. Successful exploitation enables reading arbitrary files on the server, potentially exposing sensitive information such as configuration files, user data, or system details, without affecting integrity or availability.
Further details are available in the reference at https://gitlab.com/daniele_m/cve-list/-/blob/main/README.md. No specific patch or mitigation guidance is detailed in the provided information.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-46686
Vulnerability details
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the WSCView/Save function.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Directory traversal in public-facing web app directly enables remote unauthenticated file read (T1190) and arbitrary local file access (T1005).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly remediates the directory traversal flaw in the WSCView/Save function through timely identification, reporting, and correction of the vulnerability.
Validates file path inputs to the WSCView/Save function to block malicious directory traversal sequences like '../'.
Deploys boundary protections such as web application firewalls to inspect and block crafted requests exploiting the directory traversal vulnerability.