Lucene search
RgodZDI-17-052HistoryJan 20, 2017 - 12:00 a.m.
Brocade Network Advisor CliMonitorReportServlet Directory Traversal Information Disclosure Vulnerability
2017-01-2000:00:00
rgod
www.zerodayinitiative.com
29
0.953 High
EPSS
Percentile
99.4%
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Brocade Network Advisor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CliMonitorReportsServlet servlet. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose sensitive information under the context of SYSTEM.
Related
prion
prion
Directory traversal
2017-01-14 19:59:00
cvelist
cvelist
CVE-2016-8207
2017-01-14 19:00:00
nvd
nvd
CVE-2016-8207
2017-01-14 19:59:00
cve
cve
CVE-2016-8207
2017-01-14 19:59:00
checkpoint_advisories
checkpoint_advisories
Brocade Network Advisor Directory Traversal (CVE-2016-8206; CVE-2016-8207)
2017-02-27 00:00:00
ibm
ibm
openvas
openvas
Brocade Network Advisor Multiple Vulnerabilities
2017-01-16 00:00:00