Medium severity6.5NVD Advisory· Published Dec 7, 2023· Updated Jun 17, 2026
CVE-2023-47440
CVE-2023-47440
Description
Gladys Assistant v4.27.0 and prior is vulnerable to Directory Traversal. The patch of CVE-2023-43256 was found to be incomplete, allowing authenticated attackers to extract sensitive files in the host machine.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
gladysnpm | <= 4.27.0 | — |
Affected products
2- Gladys Assistant/Gladys Assistantdescription
Patches
Vulnerability mechanics
References
7- github.com/GladysAssistant/Gladys/pull/1918/commits/4f56ba250ff9f46578f1afa6a97e62e74bad83b7nvdPatchWEB
- blog.moku.fr/cve/nvdThird Party Advisory
- blog.moku.fr/cves/CVE-2023-47440/nvdThird Party Advisory
- github.com/advisories/GHSA-c79f-pqgf-fhp3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-47440ghsaADVISORY
- blog.moku.fr/cveghsaWEB
- blog.moku.fr/cves/CVE-2023-47440ghsaWEB
News mentions
0No linked articles in our index yet.