Описание
Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.
Ссылки
- Third Party Advisory
- Product
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:deutschepost:mailoptimizer:4.3:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05164
Низкий
7.8 High
CVSS3
8.3 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.
EPSS
Процентиль: 90%
0.05164
Низкий
7.8 High
CVSS3
8.3 High
CVSS2
Дефекты
CWE-22