Описание
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-6483.
Ссылки
- Exploit
- Vendor Advisory
- Exploit
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.4.0 (включая)Версия до 7.4.1 (включая)
Одно из
cpe:2.3:a:safenet:sentinel_keys_server:*:*:*:*:*:*:*:*
cpe:2.3:a:safenet:sentinel_protection_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05278
Низкий
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2007-6483.
EPSS
Процентиль: 90%
0.05278
Низкий
5 Medium
CVSS2
Дефекты
CWE-22