Sangfor Next-Gen Application Firewall Authenticated File Disclosure
CVE-2023-30804

4.9MEDIUM

Key Information:

Vendor: Sangfor
Status: Net-gen Application Firewall
Vendor: CVE Published:; 10 October 2023

🔔 Create Sangfor Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2023-30804?

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.

Affected Version(s)

Net-Gen Application Firewall Linux 8.0.17

References

https://labs.watchtowr.com/yet-more-unauth-remote-command...

third-party-advisoryexploittechnical-description

https://vulncheck.com/advisories/sangfor-ngaf-auth-file-d...

third-party-advisory

https://aws.amazon.com/marketplace/pp/prodview-uujwjffddxzp4

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Oct 10, 2023
👾
Exploit known to exist
Oct 10, 2023
Vulnerability published
Oct 10, 2023
Vulnerability Reserved
Apr 18, 2023

Credit

watchTowr Labs

watchTowr Labs

.

CVE-2023-30804 : Sangfor Next-Gen Application Firewall Authenticated File Disclosure