Описание
aaPanel v6.8.21 was discovered to be vulnerable to directory traversal. This vulnerability allows attackers to obtain the root user private SSH key(id_rsa).
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:aapanel:aapanel:6.8.21:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02582
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
почти 4 года назад
aaPanel v6.8.21 was discovered to be vulnerable to directory traversal. This vulnerability allows attackers to obtain the root user private SSH key(id_rsa).
EPSS
Процентиль: 85%
0.02582
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22