Medium severity6.5NVD Advisory· Published Jul 10, 2023· Updated Jun 17, 2026
CVE-2023-37288
CVE-2023-37288
Description
SmartBPM.NET component has a vulnerability of path traversal within its file download function. An unauthenticated remote attacker can exploit this vulnerability to access arbitrary system files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SmartSoft/SmartBPM.NETv5Range: 6.70
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-7223-af8f8-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.