21 Aoû 2017
CVE-2017-7424 - CVE Vulnerability
A Path Traversal (CWE-22) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote authenticated users to download arbitrary files from a system running the product, if this component is configured. Note esfadmingui is not enabled by default. (CVSS:4.0) (Last Update:2017-08-28)
Vulnerability Details : A Path Traversal (CWE-22) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote authenticated users to download arbitrary files from a system running the product, if this component is configured. Note esfadmingui is not enabled by default. Publish Date : 2017-08-21 Last Update Date : 2017-08-28 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-7424
- Number Of Affected Versions By Product
- References For CVE-2017-7424
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-7424There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |