Security Advisory

CVE-2021-35967

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-19 11:55:45

Last updated 2024-09-16 16:27:48

Assigner twcert

State PUBLISHED

Description

The directory page parameter of the Orca HCM digital learning platform does not filter special characters. Remote attackers can access the system directory thru Path Traversal without logging in.

← Browse all CVEs View on cve.org ↗