Описание
Multiple authenticated path traversal vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of these vulnerabilities result in the ability to read arbitrary files on the underlying operating system, including sensitive system files.
Уязвимые конфигурации
Конфигурация 1Версия до 9.0.8.0 (включая)Версия от 9.1.0.0 (включая) до 9.1.5.0 (включая)Версия от 9.2.0.0 (включая) до 9.2.3.0 (включая)
Одно из
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:*:*:*:*:*:*:*:*
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:*:*:*:*:*:*:*:*
cpe:2.3:a:arubanetworks:edgeconnect_enterprise:*:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00054
Низкий
4.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 4.9
github
больше 2 лет назад
Multiple authenticated path traversal vulnerabilities exist in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of these vulnerabilities result in the ability to read arbitrary files on the underlying operating system, including sensitive system files.
EPSS
Процентиль: 17%
0.00054
Низкий
4.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-22
CWE-22