Directory traversal

2021-02-1516:15:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.8%

JSON

A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker with administrative permissions to read and write arbitrary files in the Linux file system. This issue affects: GateManager all versions prior to 9.2c.

CPENameOperatorVersion
gatemanager_4250_firmwareeq< 9.0i
gatemanager_4260_firmwareeq< 9.0i
gatemanager_8250_firmwareeq< 9.2c
gatemanager_9250_firmwareeq< 9.0i