Vulnerability — CVE-2023-30802

CVE-2023-30802

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-30802
Description:: The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.
Last updated date:: 10/13/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/13/2023
Reference url to background: https://labs.watchtowr.com/yet-more-unauth-remote-command-execution-vulns-in-firewalls-sangfor-edition/