Описание
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated are affected.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 6.02.01 (включая) до 6.04.34 (включая)
cpe:2.3:a:elvexys:streamx:*:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00484
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
около 3 лет назад
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated are affected.
EPSS
Процентиль: 65%
0.00484
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22