Описание
Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.0.851 (включая)
Одно из
cpe:2.3:a:freedownloadmanager:free_download_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:2:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:2.1:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:2.5.700:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:2.5.704:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:2.5.724:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:3.0.843:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:3.0.848:*:*:*:*:*:*:*
cpe:2.3:a:freedownloadmanager:free_download_manager:3.0.850:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00341
Низкий
7.1 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.
EPSS
Процентиль: 56%
0.00341
Низкий
7.1 High
CVSS2
Дефекты
CWE-22