CVE-2020-7858 in AquaNPlayerالمعلومات

الملخص

بحسب MITRE • 23/04/2021

There is a directory traversing vulnerability in the download page url of AquaNPlayer 2.0.0.92. The IP of the download page url is localhost and an attacker can traverse directories using "dot dot" sequences(../../) to view host file on the system. This vulnerability can cause information leakage.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

مسؤول

KrCERT/CC

حجز

22/01/2020

إفشاء

23/04/2021

الاعتدال

تمت الموافقة

إدخال

VDB-173813

EPSS

0.01060

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!