GCVE - cpe:2.3:a:afterlogic:aurora_files:9.7.3:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:afterlogic:aurora_files:9.7.3:*:*:*:*:*:*:*

part: a version: 9.7.3 update: *

Vendor	Afterlogic (`9dd7f5df-4ffb-51fb-89bf-599392077f38`)
Product	Aurora Files (`65b2d9e8-5d59-5b1c-ac96-ddce1379c2c5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/afterlogic/aurora-files`	purl2cpe	2026-06-01 10:16:50.449851

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-43176`	vulnerable	2026-06-08 06:11:10.994271	Details available A deserialization vulnerability in Afterlogic Aurora Files v9.7.3 allows attackers to execute arbitrary code via supplying a crafted .sabredav file. Published: 2023-10-03T00:00:00.000Z Updated: 2024-09-20T16:16:50.496Z Open on db.gcve.eu Reference links http://afterlogic.com http://aurora.com https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H&version=3.1 https://sec.leonardini.dev/blog/cve-2023-43176-rce_aurora_files/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.