exploitDog

GHSA-7v4w-hvhc-jxvp

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management (CM) Infrastructure 4.0 through 4.2i and Client Configuration Manager (CCM) 2.0 allows remote attackers to read arbitrary files via URLs containing tilde (~) references to home directories, as demonstrated by ~root.

httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management (CM) Infrastructure 4.0 through 4.2i and Client Configuration Manager (CCM) 2.0 allows remote attackers to read arbitrary files via URLs containing tilde (~) references to home directories, as demonstrated by ~root.

Ссылки

EPSS

Процентиль: 74%

0.00829

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2007-5413

nvd

больше 18 лет назад

httpd.tkd in Radia Integration Server in Hewlett-Packard (HP) OpenView Configuration Management (CM) Infrastructure 4.0 through 4.2i and Client Configuration Manager (CCM) 2.0 allows remote attackers to read arbitrary files via URLs containing tilde (~) references to home directories, as demonstrated by ~root.

EPSS

Процентиль: 74%

0.00829

Низкий

CVE ID

Дефекты

CWE-200