Описание
Directory traversal vulnerability in WinFrigate Frigate 3 FTP client 3.36 and earlier allows remote FTP servers to overwrite arbitrary files via a ".." (dot dot backslash) in a filename.
Уязвимые конфигурации
Конфигурация 1Версия до 3.36 (включая)
Одно из
cpe:2.3:a:winfrigate:frigate_3:*:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.17:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.18:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.19:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.20:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.21:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.22:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.23:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.24:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.25:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.26:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.27:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.28:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.29:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.30:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.31:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.32:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.33:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.34:*:*:*:*:*:*:*
cpe:2.3:a:winfrigate:frigate_3:3.35:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00175
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in WinFrigate Frigate 3 FTP client 3.36 and earlier allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename.
EPSS
Процентиль: 39%
0.00175
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-22