Security Advisory

CVE-2020-7882

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-22 14:43:26

Last updated 2024-08-04 09:48:23

Assigner krcert

State PUBLISHED

Description

Using the parameter of getPFXFolderList function, attackers can see the information of authorization certification and delete the files. It occurs because the parameter contains path traversal characters(ie. ../../../)

← Browse all CVEs View on cve.org ↗