Directory traversal vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows authenticated attackers to delete arbitrary files and/or directories on the server via unspecified vectors.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 05:46
Type | Values Removed | Values Added |
---|---|---|
References | () https://jvn.jp/en/jp/JVN37417423/index.html - Third Party Advisory | |
References | () https://www.contec.com/jp/api/downloadlogger?download=https://www.contec.com/jp/-/media/contec/jp/support/security-info/contec_security_solarview_210216.pdf - Vendor Advisory | |
References | () https://www.contec.com/jp/download/contract/contract2/?itemid=b28c8b7c-9f40-40b2-843c-b5b04c035b0e&downloaditemid=fa248fba-8901-4d9e-8212-b139f2defbdf - Vendor Advisory |
Information
Published : 2021-02-24 12:15
Updated : 2024-11-21 05:46
NVD link : CVE-2021-20661
Mitre link : CVE-2021-20661
CVE.ORG link : CVE-2021-20661
JSON object : View
Products Affected
contec
- sv-cpt-mc310
- sv-cpt-mc310_firmware
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')