CVE-2017-20184 in Powersoftالمعلومات

الملخص

بحسب MITRE • 04/05/2023

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Carlo Gavazzi Powersoft up to version 2.1.1.1 allows an unauthenticated, remote attacker to download any file from the affected device.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

CERT VDE

حجز

04/05/2023

إفشاء

04/05/2023

الاعتدال

تمت الموافقة

إدخال

VDB-227999

CPE

جاهز

CWE

CWE-22 (مؤكد)

استغلال

تحميل

CVSS

7.5 (CNA)

EPSS

0.02764

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20184
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20184
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20184/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!