A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile() method in the Keysight Sensor Management Server (SMS). This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host.
CPE | Name | Operator | Version |
---|---|---|---|
sensor_management_server | eq | 2.4.0 |