CVE-2023-37532 – A path traversal vulnerability affects HCL Commerce

https://notcve.org/view.php?id=CVE-2023-37532

HCL Commerce Remote Store server could allow a remote attacker, using a specially-crafted URL, to read arbitrary files on the system. El servidor HCL Commerce Remote Store podría permitir que un atacante remoto, utilizando una URL especialmente manipulada, lea archivos arbitrarios en el system. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108094 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •