3 matches found
CVE-2021-32018
An issue was discovered in JUMP AMS 3.6.0.04.009-2487. The JUMP SOAP API was vulnerable to arbitrary file reading due to an improper limitation of file loading on the server filesystem, aka directory traversal...
CVE-2021-32017
An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the listing of the content of the remote file system. This can be used to identify the complete server filesystem structure, i.e., identifying all the directories and files...
JUMP 路径遍历漏洞
JUMP is an asset management solution from the French company JUMP. version 3.6.0.04.009-2487 of JUMP AMS contains a security vulnerability that stems from the fact that the application allows arbitrary files to be written to a user-controlled location on a remote file system with user-controlled...