Описание
Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote attackers to read arbitrary files by prepending several / (slash) characters to the URI.
Ссылки
- Third Party Advisory
- Broken Link
- Broken Link
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Broken Link
- Broken Link
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:acme_labs:acme_server:1.7:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.12377
Средний
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Acme.Serve 1.7, as used in Cisco Secure ACS Unix and possibly other products, allows remote attackers to read arbitrary files by prepending several / (slash) characters to the URI.
EPSS
Процентиль: 94%
0.12377
Средний
5 Medium
CVSS2
Дефекты
CWE-20