Security Advisory

CVE-2021-47724

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 20:42:12

Last updated 2026-04-07 14:05:45

Assigner VulnCheck

State PUBLISHED

Description

STVS ProVision 5.9.10 contains a path traversal vulnerability that allows authenticated attackers to access arbitrary files by manipulating the files parameter in the archive download functionality. Attackers can send GET requests to /archive/download with directory traversal sequences to read sensitive system files like /etc/passwd.

← Browse all CVEs View on cve.org ↗