Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2006-3921

Опубликовано: 28 июл. 2006
Источник: nvd
CVSS2: 4
EPSS Низкий

Описание

Sun Java System Application Server (SJSAS) 7 through 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated users to read files outside of the "document root directory" via a direct request using a UTF-8 encoded URI.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sun:java_system_application_server:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:*:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:*:standard:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur1:enterprise:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur1:standard:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur2:enterprise:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur2:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur2:standard:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur4:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur5:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur5:standard:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur6:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.0:ur6:standard:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:7.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:8.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:8.1:*:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_application_server:8.1:ur1:platform:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:sp1:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:sp2:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:sp3:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:sp4:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_web_server:6.1:sp5:*:*:*:*:*:*

EPSS

Процентиль: 76%
0.00976
Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-c9qm-2w7h-fc5j

github
почти 4 года назад

Sun Java System Application Server (SJSAS) 7 through 8.1 and Web Server (SJSWS) 6.0 and 6.1 allows remote authenticated users to read files outside of the "document root directory" via a direct request using a UTF-8 encoded URI.

EPSS

Процентиль: 76%
0.00976
Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-Other