Описание
In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticated attacker, who can access the server's filesystem with the access rights of NT AUTHORITY\SYSTEM.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ixpdata:easyinstall:6.2.13723:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.01827
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticated attacker, who can access the server's filesystem with the access rights of NT AUTHORITY\SYSTEM.
EPSS
Процентиль: 83%
0.01827
Низкий
7.5 High
CVSS3
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-22