CVE-2023-29586 Information

Description

Code Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during a copy operation. This leads to Arbitrary File Read by allowing any user to copy any directory in the system to a directory they control.

Reference

https://cwe.mitre.org/data/definitions/285.html https://securityandstuff.com/posts/teracopy_arbitrary_read/