CVE-2014-9436
SysAid On-Premise vulnerable before 14.4.2 to an absolute path traversal via the fileName parameter in getRdsLogFile, allowing remote attackers to read arbitrary files. Affected component: SysAid On-Premise; root cause: improper handling of input in the fileName parameter leading to directory tra...