PT-2022-12177 · Dst-Admin · Dst-Admin

Hackerhackrat

Published

2022-01-10

Updated

2022-07-12

CVE-2021-44586

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions dst-admin version 1.3.0

Description The product has an unauthorized arbitrary file download vulnerability that can expose sensitive information.

Recommendations For dst-admin version 1.3.0, update to a version that addresses the unauthorized arbitrary file download vulnerability to prevent exposure of sensitive information.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2021-44586

Affected Products

Dst-Admin

PT-2022-12177 · Dst-Admin · Dst-Admin

CVE-2021-44586

Weakness Enumeration

Related Identifiers

Affected Products

References · 5