2 matches found
CVE-2020-29026
A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker with administrative permissions to read and write arbitrary files in the Linux file system. This issue affects: GateManager all versions prior to 9.2c...
CVE-2020-29026
The CVE describes a directory traversal flaw in GateManager’s file upload function. An authenticated administrator could read/write arbitrary Linux files in all GateManager versions prior to 9.2c. Root cause: improper validation during file upload leading to path traversal. Impact: partial confid...