PT-2018-2184 · Unknown · Iiot Monitor

Publicado

2018-12-20

Atualizado

2019-02-01

CVE-2018-7835

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions IIoT Monitor version 3.1.38

Description A Path Traversal vulnerability exists in the software, which could allow access to files available to the SYSTEM user. This issue is related to the lack of filtering of special symbols, potentially enabling an attacker to exit the restricted directory.

Recommendations For IIoT Monitor version 3.1.38, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

BDU:2019-00137

CVE-2018-7835

ZDI-19-020

Produtos afetados

Iiot Monitor

PT-2018-2184 · Unknown · Iiot Monitor

CVE-2018-7835

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6