Directory traversal

2009-02-2616:17:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

65.2%

JSON

Directory traversal vulnerability in Cisco Application Networking Manager (ANM) before 2.0 and Application Control Engine (ACE) Device Manager before A3(2.1) allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to “invalid directory permissions.”

CPENameOperatorVersion
application_control_engine_device_managereq1.1
application_control_engine_device_managerle1.2
application_networking_managereq1.1
application_networking_managerle1.2

Name	Operator	Version
application_control_engine_device_manager	eq	1.1
application_control_engine_device_manager	le	1.2
application_networking_manager	eq	1.1
application_networking_manager	le	1.2