CVE-2023-40160

Summary

Directory traversal vulnerability exists in Mailing List Search CGI (pmmls.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a remote attacker may obtain arbitrary files on the server.

Affected Software

VendorProductVersion RangeStatus
A.K.I Softwarepmmls.exe2.5.1.561 and earlieraffected

Weaknesses

  • Directory traversal

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References