Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4350

Опубликовано: 26 нояб. 2019
Источник: nvd
CVSS3: 6.5
CVSS2: 4
EPSS Средний

Описание

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:yaws:yaws:1.91:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 96%
0.25878
Средний

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

ubuntu логотип

CVE-2011-4350

CVSS3: 6.5
ubuntu
около 6 лет назад

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

debian логотип

CVE-2011-4350

CVSS3: 6.5
debian
около 6 лет назад

Yaws 1.91 has a directory traversal vulnerability in the way certain U ...

github логотип

GHSA-8xpm-277g-mcr3

CVSS3: 6.5
github
почти 4 года назад

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-crafted URL request.

EPSS

Процентиль: 96%
0.25878
Средний

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-22