Описание
Improper Limitation of a Pathname 'Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. This issue affects Algosec Firewall Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:algosec:firewall_analyzer:a33.0:-:*:*:*:*:*:*
cpe:2.3:a:algosec:firewall_analyzer:a33.0:build320:*:*:*:*:*:*
cpe:2.3:a:algosec:firewall_analyzer:a33.10:-:*:*:*:*:*:*
cpe:2.3:a:algosec:firewall_analyzer:a33.10:build210:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*
EPSS
Процентиль: 28%
0.00099
Низкий
8.8 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 8.4
github
3 месяца назад
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows Path Traversal, Code Injection.This issue affects Algosec Firewall Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).
EPSS
Процентиль: 28%
0.00099
Низкий
8.8 High
CVSS3
Дефекты
CWE-22