CVE-2023-6908 | DFIRKuiper 2.3.4 TAR Archive case_management.py unzip_file dst_path path traversal (ID 106)

CVE-2023-6908 | DFIRKuiper 2.3.4 TAR Archive case_management.py unzip_file dst_path path traversal (ID 106)

A vulnerability, which was classified as problematic, was found in DFIRKuiper Kuiper 2.3.4. This affects the function unzip_file of the file kuiper/app/controllers/case_management.py of the component TAR Archive Handler. The manipulation of the argument dst_path leads to path traversal. This vulnerability is uniquely identified as CVE-2023-6908. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.