Описание
A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:veertu:anka_build_cloud:1.42.0:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.03929
Низкий
7.5 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.5
github
больше 1 года назад
A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can result in a disclosure of arbitrary files. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.
EPSS
Процентиль: 88%
0.03929
Низкий
7.5 High
CVSS3
Дефекты
CWE-22