Security Advisory

CVE-2022-28052

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-13 14:17:10

Last updated 2024-08-03 05:41:11

Assigner mitre

State PUBLISHED

Description

Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function store in Roothub 2.6.0 allows remote attackers with low privlege to arbitrarily upload files via /common/upload API, which could lead to remote arbitrary code execution.

← Browse all CVEs View on cve.org ↗