Описание
A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:veertu:anka_build_cloud:1.42.0:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.60281
Средний
7.5 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.5
github
больше 1 года назад
A directory traversal vulnerability exists in the archive download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of arbitrary files. An attacker can make an unauthenticated HTTP request to exploit this vulnerability.
EPSS
Процентиль: 98%
0.60281
Средний
7.5 High
CVSS3
Дефекты
CWE-22