22 Nov 2021
Vulnérabilité CVE-2021-38146 CVE Vulnerability
The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote attackers to read arbitrary files via absolute path traversal in the SearchString JSON field in /home/download POST data. (CVSS:5.0) (Last Update:2021-11-23)
Vulnerability Details : The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote attackers to read arbitrary files via absolute path traversal in the SearchString JSON field in /home/download POST data. Publish Date : 2021-11-22 Last Update Date : 2021-11-23 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-38146
- Number Of Affected Versions By Product
- References For CVE-2021-38146
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-38146There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |