Описание
Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:cisco:internet_streamer:2.2\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.3\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.3\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.3\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.3\(7\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.3\(9\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.4\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.4\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.4\(5\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.5\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:internet_streamer:2.5\(3\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:content_delivery_system:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.0086
Низкий
7.8 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery System (CDS) 2.2.x, 2.3.x, 2.4.x, and 2.5.x before 2.5.7 allows remote attackers to read arbitrary files via a crafted URL.
EPSS
Процентиль: 75%
0.0086
Низкий
7.8 High
CVSS2
Дефекты
CWE-22