CVE-2023-29152
PTC Vuforia Studio before 9.9 contains an improper authorization vulnerability caused by insufficient validation of filename parameters in requests. An attacker could delete any file accessible under the permissions of the Vuforia server account.