exploitDog

CVE-2021-37500

Опубликовано: 20 янв. 2023

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server.

Ссылки

http://reprise.com
Not Applicable
http://reprisesoftware.com
Product
https://github.com/blakduk/Advisories/blob/main/Reprise%20License%20Manager/README.md
Third Party Advisory
http://reprise.com
Not Applicable
http://reprisesoftware.com
Product
https://github.com/blakduk/Advisories/blob/main/Reprise%20License%20Manager/README.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:reprisesoftware:reprise_license_manager:*:*:*:*:*:*:*:*

Версия до 16.0 (исключая)

EPSS

Процентиль: 44%

0.00217

Низкий

8.1 High

CVSS3

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-pwww-w2rw-79c6

CVSS3: 8.1

github

около 3 лет назад

Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server.

EPSS

Процентиль: 44%

0.00217

Низкий

8.1 High

CVSS3

Дефекты

CWE-22

CWE-22