3 matches found
Directory traversal
Directory Traversal in Dell Storage Manager 2016 R2.1 causes Information Disclosure when the doGet method of the EmWebsiteServlet class doesn't properly validate user provided path before using it in file operations. Was ZDI-CAN-4459...
CVE-2017-10949
Directory Traversal in Dell Storage Manager 2016 R2.1 causes Information Disclosure when the doGet method of the EmWebsiteServlet class doesn't properly validate user provided path before using it in file operations. Was ZDI-CAN-4459...
CVE-2017-10949
Dell Storage Manager 2016 R2.1 is affected by a directory traversal vulnerability in the EmWebsiteServlet doGet method, where user-supplied paths are not properly validated before file operations. This can lead to information disclosure and remote, unauthenticated access, with exploit details sta...