Vulnerabilities > CVE-2023-34834 - Unspecified vulnerability in Mcl-Collection Mcl-Net Firmware 4.3.5.8788

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

mcl-collection

NVD

Published: 2023-06-29

Updated: 2024-11-21

Summary

A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default port 5080, allows attackers to gain sensitive information about the configured databases via the "/file" endpoint.

Vulnerable Configurations

Part	Description	Count
OS	Mcl-Collection MCL Collection MCL NET Firmware 4.3.5.8788	1
Hardware	Mcl-Collection MCL Collection MCL NET -	1

References

http://www.mclv4.mcl-collection.com/index.php
https://www.exploit-db.com/exploits/51542
http://www.mclv4.mcl-collection.com/index.php
https://www.exploit-db.com/exploits/51542