CVE-2009-5087

Опубликовано: 12 сент. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in geohttpserver in Geovision Digital Video Surveillance System 8.2 allows remote attackers to read arbitrary files via a .. (dot dot) in a GET request.

Ссылки

http://osvdb.org/51886
http://secunia.com/advisories/33924
Vendor Advisory
http://securityreason.com/securityalert/8372
http://www.exploit-db.com/exploits/8041
Exploit
http://www.securityfocus.com/archive/1/500858/100/0/threaded
http://www.securityfocus.com/bid/33735
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/48674
http://osvdb.org/51886
http://secunia.com/advisories/33924
Vendor Advisory
http://securityreason.com/securityalert/8372
http://www.exploit-db.com/exploits/8041
Exploit
http://www.securityfocus.com/archive/1/500858/100/0/threaded
http://www.securityfocus.com/bid/33735
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/48674

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:geovision:digital_surveillance_system:8.2:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07979

Низкий

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-35rg-pjrx-fc55

github

почти 4 года назад