exploitDog

GHSA-crgv-7g64-wqpw

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via ".." (dot-dot backslash) sequences in a GET request.

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via ".." (dot-dot backslash) sequences in a GET request.

Ссылки

EPSS

Процентиль: 89%

0.04518

Низкий

CVE ID

Связанные уязвимости

CVE-2002-1209

nvd

больше 23 лет назад

Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via "..\" (dot-dot backslash) sequences in a GET request.

EPSS

Процентиль: 89%

0.04518

Низкий

CVE ID