Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistZdiCVELIST:CVE-2017-10949
HistoryAug 02, 2017 - 12:00 a.m.

CVE-2017-10949

2017-08-0200:00:00
zdi
www.cve.org

0.119 Low

EPSS

Percentile

95.4%

JSON

Directory Traversal in Dell Storage Manager 2016 R2.1 causes Information Disclosure when the doGet method of the EmWebsiteServlet class doesn’t properly validate user provided path before using it in file operations. Was ZDI-CAN-4459.

CNA Affected

[
  {
    "product": "Dell Storage Manager",
    "vendor": "Zero Day Initiative",
    "versions": [
      {
        "status": "affected",
        "version": "2016 R2.1"
      }
    ]
  }
]

Related

prion 1
checkpoint_advisories 1
cve 1
zdi 1
nvd 1
prion
prion
Directory traversal
2017-08-04 15:29:00
checkpoint_advisories
checkpoint_advisories
Dell Storage Manager EmWebsiteServlet Directory Traversal (CVE-2017-10949)
2017-08-14 00:00:00
cve
cve
CVE-2017-10949
2017-08-04 15:29:00
zdi
zdi
Dell Storage Manager EmWebsiteServlet Directory Traversal Information Disclosure Vulnerability
2017-08-02 00:00:00
nvd
nvd
CVE-2017-10949
2017-08-04 15:29:00

0.119 Low

EPSS

Percentile

95.4%

JSON
Related for CVELIST:CVE-2017-10949
prion1checkpoint_advisories1cve1zdi1nvd1