Описание
The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtain sensitive information by importing a crafted firmware file.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 12.1.2 (включая)
cpe:2.3:a:emc:connectrix_manager:*:-:-:*:converged_network_edition:*:*:*
EPSS
Процентиль: 62%
0.00435
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtain sensitive information by importing a crafted firmware file.
EPSS
Процентиль: 62%
0.00435
Низкий
5 Medium
CVSS2
Дефекты
CWE-264