Описание
Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). The vulnerability is in the storage functionality of the API and allows one to escape the base directory of the buckets, freely navigate system directories, and read arbitrary files.
Ссылки
- Patch
- ExploitThird Party Advisory
- Patch
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:spaceapplications:yamcs:5.8.6:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01245
Низкий
7.5 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
EPSS
Процентиль: 79%
0.01245
Низкий
7.5 High
CVSS3
Дефекты
CWE-22