exploitDog

GHSA-3r32-ggmf-p3vp

Опубликовано: 19 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.9

Описание

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal attacks by uploading z ZIP file that contains a symbolic link.

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal attacks by uploading z ZIP file that contains a symbolic link.

Ссылки

EPSS

Процентиль: 43%

0.00207

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2021-41551

CVSS3: 4.9

nvd

около 4 лет назад

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal attacks by uploading z ZIP file that contains a symbolic link.

EPSS

Процентиль: 43%

0.00207

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-22