Sangfor Next-Gen Application Firewall Source Code Disclosure
CVE-2023-30802

5.3MEDIUM

Key Information:

Vendor

Sangfor

Status
Net-gen Application Firewall
Vendor
CVE Published:
10 October 2023

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2023-30802?

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.

Affected Version(s)

Net-Gen Application Firewall Linux 8.0.17

References

https://labs.watchtowr.com/yet-more-unauth-remote-command...
third-party-advisoryexploittechnical-description
https://vulncheck.com/advisories/sangfor-ngaf-source
third-party-advisory
https://aws.amazon.com/marketplace/pp/prodview-uujwjffddxzp4
product

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

watchTowr Labs
watchTowr Labs
JSON
.
CVE-2023-30802 : Sangfor Next-Gen Application Firewall Source Code Disclosure