Описание
A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/ endpoint. An unauthenticated attacker can remotely read arbitrary files on the underlying OS using encoded traversal sequences.
Ссылки
- Third Party AdvisoryExploit
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:wss:protop:4.4.2-2024-11-27:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02982
Низкий
8.2 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 8.2
github
25 дней назад
A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/ endpoint. An unauthenticated attacker can remotely read arbitrary files on the underlying OS using encoded traversal sequences.
EPSS
Процентиль: 86%
0.02982
Низкий
8.2 High
CVSS3
Дефекты
CWE-22