Описание
In Xerox FreeFlow Core version 8.0.4, an attacker can exploit a Path Traversal vulnerability to access unauthorized files on the server. This can lead to Remote Code Execution (RCE), allowing the attacker to run arbitrary commands on the system.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:xerox:freeflow_core:8.0.4:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00485
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 9.8
github
около 1 месяца назад
In Xerox FreeFlow Core version 8.0.4, an attacker can exploit a Path Traversal vulnerability to access unauthorized files on the server. This can lead to Remote Code Execution (RCE), allowing the attacker to run arbitrary commands on the system.
EPSS
Процентиль: 64%
0.00485
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-22