Lucene search
K

16 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.7 views

The vulnerability of the Booco business automation platform lies in the improper limitation of the path name to the restricted access catalog. This allows attackers to create or overwrite files in the file system’s directories and execute arbitrary code.

The vulnerability of the Booco business automation platform is related to an incorrect restriction on the path name for restricted access catalogs. Exploiting this vulnerability allows a malicious actor to create or re-record files in file system catalogs and execute arbitrary code...

9.1CVSS5.8AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.9 views

The vulnerability of Linksys Velop WHW01’s microprogramming software arises from incorrect pathname restrictions for access to restricted catalogs. This allows attackers to escalate their privileges.

The vulnerability of Linksys Velop WHW01 microprogrammed software lies in the incorrect limitation of the path name to the restricted access directory. Exploiting this vulnerability can allow an attacker to increase their privileges...

9CVSS5.5AI score0.02902EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/20 12:0 a.m.8 views

The vulnerability of the Xerox Workplace Suite print server, related to incorrect path name restrictions for restricted access directories, allows attackers to gain read, modify, or delete access to data.

The vulnerability of the Xerox Workplace Suite print management server is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability can allow a malicious actor to gain read, modify, or delete access to data...

6.5CVSS5.5AI score0.00409EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.7 views

The vulnerability of Fortinet’s software products arises from incorrect restrictions on path names in restricted access catalogs, allowing attackers to escalate their privileges.

The vulnerability of Fortinet’s software products is related to incorrect restrictions on path names in the restricted access catalog. Exploiting this vulnerability can allow attackers to enhance their privileges through specially created packages...

7.8CVSS5.5AI score0.14944EPSS
Exploits0References2Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/11/01 12:0 a.m.7 views

The vulnerability of the Platypus.js tooling platform, related to incorrect path name restrictions for restricted access catalogs, allows attackers to gain access to confidential data.

The vulnerability of the Platypus.js tooling platform is related to an incorrect restriction on the path name to the restricted-access catalog. Allowing this to be exploited could enable a malicious actor to gain access to confidential data...

7.7CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/11 12:0 a.m.13 views

The vulnerability of the software platforms for developing and managing Magento Open Source and Adobe Commerce online stores lies in the incorrect limitation of the path to the restricted catalog. This allows attackers to read arbitrary files.

The vulnerability of the Magento Open Source and Adobe Commerce software platforms for developing and managing online stores is related to incorrect path name restrictions for access to restricted catalogs. Exploiting this vulnerability allows a malicious actor to remotely read arbitrary files...

7.7CVSS5.6AI score0.00911EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/03/07 12:0 a.m.6 views

The vulnerability of QTS, QuTS hero, and QuTScloud network devices from Qnap operating systems arises from incorrect path name restrictions for access-controlled catalogs. This allows attackers to exploit the vulnerabilities to disclose protected information.

The vulnerability of QTS, QuTS Hero, and QuTScloud network devices from QNAP operating systems is related to incorrect path name restrictions in the restricted access catalog. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

7.8CVSS7.1AI score0.0061EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/11/29 12:0 a.m.6 views

The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server arises from incorrect restrictions on path names to restricted access catalogs. This allows attackers to execute arbitrary code.

The vulnerability of server-based corporate software for project monitoring and management in Adobe RoboHelp Server relates to incorrect path name restrictions for restricted access directories. Exploitation of this vulnerability could allow an attacker to execute arbitrary code remotely...

8.3CVSS7.5AI score0.01937EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/11/09 12:0 a.m.5 views

The vulnerability of FortiWeb web applications’ network firewalls arises from incorrect pathname restrictions for access to restricted catalogs. This allows attackers to disclose protected information.

The vulnerability of FortiWeb web applications’ network firewalls exists due to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability can allow a malicious actor to disclose protected information through specially crafted web requests...

6.8CVSS6.5AI score0.00558EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/06/02 12:0 a.m.4 views

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow gas analyzers’ microprogramming software lies in the lack of name-based path restriction, which allows unauthorized access to protected information by attackers.

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow analyzers’ microprogramming software is related to deficiencies in the name-based path restriction mechanism for access to restricted catalogs. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

7.8CVSS7.2AI score0.01397EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/01/13 12:0 a.m.7 views

The vulnerability of the Fortinet FortiPortal security analysis and management tool arises from incorrect path name restrictions for restricted access catalogs. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the Fortinet FortiPortal security analysis and management tool is related to an incorrect restriction on the path name to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information through a special...

6.8CVSS6.5AI score0.011EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/10/03 12:0 a.m.7 views

The vulnerability of the software platforms for developing and managing Magento Open Source and Adobe Commerce products lies in the incorrect limitation of the path to the restricted catalog. This allows attackers to execute arbitrary code.

The vulnerability of the Magento Open Source and Adobe Commerce software platforms for developing and managing online stores is related to incorrect path name restrictions for access to restricted catalogs. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in t...

9.1CVSS8AI score0.01976EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/12/14 12:0 a.m.6 views

The vulnerability of OPPO’s 5G router web application, related to incorrect path name restrictions for accessing restricted catalogs, allows attackers to gain unauthorized access to protected information.

The vulnerability of OPPO’s 5G router web application is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

5.3CVSS5.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.5 views

The vulnerability of SAP NetWeaver Java Application Server web applications lies in incorrect path name restrictions for access to restricted catalogs, allowing attackers to gain unauthorized access to protected information.

The vulnerability of SAP NetWeaver Java Application Server web applications relates to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access to protected information by sending a...

7.5CVSS7.5AI score0.46605EPSS
Exploits5References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/09/29 12:0 a.m.5 views

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2020 arises from incorrect path name restrictions for restricted access catalogs. This allows attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 is related to incorrect path name restrictions for access to restricted...

10CVSS7.6AI score0.0039EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/03/25 12:0 a.m.5 views

The vulnerability of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, is related to incorrect path name restrictions for restricted access catalogs. This allows attackers to execute arbitrary code.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to incorrect path name restrictions for access to restricted catalogs. Exploiting these vulnerabilities can allow an...

8.8CVSS7.9AI score0.03233EPSS
Exploits0References3
Rows per page
Query Builder