CVE-2023-6023 Information

Description

An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifact_path URL parameter.

Reference

https://huntr.com/bounties/644ab868-db6d-4685-ab35-1a897632d2ca