Lucene search
China National Vulnerability DatabaseCNVD-2021-92468HistoryNov 25, 2021 - 12:00 a.m.
Aim path traversal vulnerability
2021-11-2500:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
path traversal vulnerability
aim
open source
exploit
arbitrary files
directories
file system
manipulation
absolute paths
access
source code
configuration
critical files
cnvd
EPSS
0.002
Percentile
57.3%
Aim is an easy-to-use and high-performance open source experiment tracker from the U.S. A path traversal vulnerability exists in versions of Aim prior to 3.1.0, which can be exploited by an attacker to access arbitrary files and directories stored on the file system by manipulating references to files with dot-dot slash (. /) sequences and their variants, or by using absolute file paths, they can access arbitrary files and directories stored on the file system, including application source code or configuration and critical system files.
Related
cve
cve
CVE-2021-43775
2021-11-23 21:15:20
osv
osv
PYSEC-2021-839
2021-11-23 21:15:00
CVE-2021-43775
2021-11-23 21:15:20
Arbitrary file reading vulnerability in Aim
2021-11-23 22:03:23
prion
prion
Path traversal
2021-11-23 21:15:00
nvd
nvd
CVE-2021-43775
2021-11-23 21:15:20
github
github
Arbitrary file reading vulnerability in Aim
2021-11-23 22:03:23
veracode
veracode
Directory Traversal
2021-11-24 05:13:35
cvelist
cvelist
CVE-2021-43775 Arbitrary file reading vulnerability in Aim
2021-11-23 19:15:13