Описание
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service.
Ссылки
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.5 (исключая)
cpe:2.3:a:maarch:maarch_rm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.0134
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service.
EPSS
Процентиль: 80%
0.0134
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-22