Описание
HCL AppScan Traffic Recorder fails to adequately neutralize special characters within the filename, potentially allowing it to resolve to a location beyond the restricted directory. Potential exploits can completely disrupt or takeover the application or the computer where the application is running.
EPSS
Процентиль: 37%
0.00162
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 4.3
github
11 месяцев назад
HCL AppScan Traffic Recorder fails to adequately neutralize special characters within the filename, potentially allowing it to resolve to a location beyond the restricted directory. Potential exploits can completely disrupt or takeover the application or the computer where the application is running.
EPSS
Процентиль: 37%
0.00162
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-22