exploitDog

GHSA-5f8x-2qcp-3pr6

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

Ссылки

EPSS

Процентиль: 82%

0.01751

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2014-2610

nvd

больше 11 лет назад

Directory traversal vulnerability in the Content Acceleration Pack (CAP) web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code by uploading an executable file, aka ZDI-CAN-2117.

EPSS

Процентиль: 82%

0.01751

Низкий

CVE ID

Дефекты

CWE-22