Lucene search
JpcertCVELIST:CVE-2024-33620HistoryJun 18, 2024 - 5:44 a.m.
CVE-2024-33620
2024-06-1805:44:53
jpcert
www.cve.org
6
cve-2024-33620
path traversal
id link manager
fujitsu software
file retrieval
remote attacker
0.0004 Low
EPSS
Percentile
9.1%
Absolute path traversal vulnerability exists in ID Link Manager and FUJITSU Software TIME CREATOR. If this vulnerability is exploited, the file contents including sensitive information on the server may be retrieved by an unauthenticated remote attacker.
CNA Affected
[
{
"vendor": "Fsas Technologies Inc.",
"product": "FUJITSU Business Application ID Link Manager II",
"versions": [
{
"version": "V1.8 and earlier",
"status": "affected"
}
]
},
{
"vendor": "Fsas Technologies Inc.",
"product": "FUJITSU Software ID Link Manager",
"versions": [
{
"version": "V2.0",
"status": "affected"
}
]
},
{
"vendor": "Fsas Technologies Inc.",
"product": "FUJITSU Software TIME CREATOR ID Link Manager",
"versions": [
{
"version": "V2.3.0",
"status": "affected"
},
{
"version": " V2.3.1",
"status": "affected"
},
{
"version": " V2.4",
"status": "affected"
},
{
"version": " V2.5",
"status": "affected"
},
{
"version": " V2.6",
"status": "affected"
},
{
"version": " and V2.7",
"status": "affected"
}
]
},
{
"vendor": "Fsas Technologies Inc.",
"product": "FUJITSU Software TIME CREATOR ID Link Manager",
"versions": [
{
"version": "V3.0",
"status": "affected"
},
{
"version": " V3.0.2",
"status": "affected"
},
{
"version": " V3.0.2.1",
"status": "affected"
},
{
"version": " and V3.0.3",
"status": "affected"
}
]
}
]
