7.1 High
AI Score
Confidence
Low
0.259 Low
EPSS
Percentile
96.7%
Directory traversal vulnerability in the ReportViewServlet servlet in the server in NetIQ Sentinel 7.4.x before 7.4.2 allows remote attackers to read arbitrary files via a PREVIEW value for the fileType field.
www.zerodayinitiative.com/advisories/ZDI-16-406
www.netiq.com/support/kb/doc.php?id=7017803