52 matches found
CVE-2024-46649
eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder...
CVE-2024-46649
eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder...
eNMS 安全漏洞
eNMS is a network automation platform from eNMS Open Source. A security vulnerability exists in eNMS versions 4.4.0 through 4.7.1, which stems from vulnerability to directory traversal attacks via scanfolder...
PT-2024-32092 · Enms · Enms
Name of the Vulnerable Software and Affected Versions: eNMS versions 4.4.0 through 4.7.1 Description: The issue is related to a Directory Traversal vulnerability. This vulnerability can be exploited through the upload files feature, allowing unauthorized access to sensitive files and directories...
CVE-2024-46646
eNMS up to 4.7.1 is vulnerable to Directory Traversal via /download/file...
CVE-2024-46644
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via editfile...
CVE-2024-46644
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via editfile...
CVE-2024-46648
CVE-2024-46648 affects eNMS versions 4.4.0–4.7.1. The issue is a Directory Traversal via the scan_folder feature, allowing access to files/directories outside the intended scope. Root cause details are reported across multiple sources (eNMS releases 4.4.0–4.7.1; directory traversal via scan_folde...
CVE-2024-46645
CVE-2024-46645 affects eNMS 4.0.0 and is a Directory Traversal vulnerability exploitable via the get_tree_files functionality. Public sources in the connected docs consistently describe the issue as a vulnerability in eNMS 4.0.0 with directory traversal exposure; no exploit details or campaigns a...
PT-2024-32089 · Enms · Enms
Name of the Vulnerable Software and Affected Versions: eNMS versions 4.4.0 through 4.7.1 Description: The issue is related to Directory Traversal via edit file. This allows unauthorized access to sensitive files and directories. Recommendations: For versions 4.4.0 through 4.7.1, consider...
CVE-2024-46647
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via uploadfiles...
CVE-2024-46647
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via uploadfiles...
eNMS 安全漏洞
eNMS is a network automation platform from eNMS Open Source. A security vulnerability exists in eNMS 4.7.1 and earlier versions, which stems from vulnerability to directory traversal attacks via download/folder...
CVE-2024-46646
eNMS up to 4.7.1 is vulnerable to Directory Traversal via /download/file...
CVE-2024-46644
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via editfile...
CVE-2024-46649
eNMS up to 4.7.1 is vulnerable to Directory Traversal via the download/folder path. The root cause is a path handling issue that can allow accessing files outside the intended directory. Impact stated across connected feeds includes potential exposure of sensitive files; exploitation details are ...
CVE-2024-46646
CVE-2024-46646 affects eNMS up to 4.7.1. The vulnerability is a Directory Traversal flaw exploitable via the "/download/file" endpoint, as described across multiple sources (Red Hat, NVD, OSV, CNNVD, CVE list). The root cause details are not explicitly provided beyond the endpoint and traversal n...
CVE-2024-46647
CVE-2024-46647 affects eNMS versions 4.4.0–4.7.1. The vulnerability is a Directory Traversal via the upload_files feature, caused by insufficient input validation, permitting access to sensitive files/directories. Impact is described as high confidentiality risk with no stated integrity/availabil...
PT-2024-32090 · Enms · Enms
Name of the Vulnerable Software and Affected Versions: eNMS version 4.0.0 Description: The issue is related to a Directory Traversal vulnerability via the get tree files parameter. This allows unauthorized access to files on the system. No information is provided about the estimated number of...
CVE-2024-46645
eNMS 4.0.0 is vulnerable to Directory Traversal via gettreefiles...