Описание
Nimble Streamer 3.0.2-2 through 3.5.4-9 has a ../ directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of the restricted directory on the remote server.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.0.2-2 (включая) до 3.5.4-9 (включая)
cpe:2.3:a:softvelum:nimble_streamer:*:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.8851
Высокий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
Nimble Streamer 3.0.2-2 through 3.5.4-9 has a ../ directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of the restricted directory on the remote server.
EPSS
Процентиль: 99%
0.8851
Высокий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22