2 matches found
CVE-2017-5811
CVE-2017-5811 affects HP (HPE) Network Automation 9.1x, 9.2x, 10.0x, 10.1x and 10.2x. The vulnerability is a FileServlet directory traversal information disclosure caused by lack of validation of a user-supplied path, allowing remote attackers to read arbitrary files. The linked sources in the co...
HPE Network Automation FileServlet Information Disclosure (CVE-2017-5811)
An information disclosure vulnerability exists in HPE Network Automation. The vulnerability is due to a lack of sanitization on a user supplied path on requests handled by FileServlet. A remote attacker could exploit this vulnerability by sending a maliciously crafted request to the target server...