Описание
HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hcltech:dryice_myxalytics:5.9:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:dryice_myxalytics:6.0:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:dryice_myxalytics:6.1:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00081
Низкий
7.6 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 7.6
github
около 2 лет назад
HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.
EPSS
Процентиль: 24%
0.00081
Низкий
7.6 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-22
CWE-22