In the Hotfix release for PRTG 23.4.88.1429, the following fix is mentioned:
Webserver - important:
We fixed a path traversal vulnerability in the PRTG Webserver that could be leveraged without authentication.
Is there more information available?
What is the vulnerability fixed in PRTG 23.4.88.1429 about?
Modified on 2025-06-10 16:32:58 +0200
Attention: This article is a record of a conversation with the Paessler support team. The information in this conversation is not updated to preserve the historical record. As a result, some of the information or recommendations in this conversation might be out of date.
Disclaimer:
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.
The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.
More information will be available as part of a staged disclosure process. We will update this article with more detailed information as soon as possible.
CVE-ID: CVE-2023-45858
Update history:
Oct, 2023 - Permalink