Описание
WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.8.0 (исключая)
cpe:2.3:a:dell:wyse_management_suite:*:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00432
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
WMS 3.7 contains a Path Traversal Vulnerability in Device API. An attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
EPSS
Процентиль: 62%
0.00432
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22