Security Advisory

CVE-2024-53586

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-06 00:00:00

Last updated 2025-02-11 14:42:52

Assigner mitre

State PUBLISHED

Description

An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing data outside the intended directory.

← Browse all CVEs View on cve.org ↗