SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature.
References
Link | Resource |
---|---|
https://packetstormsecurity.com/files/155525/SALTO-ProAccess-SPACE-5.5-Traversal-File-Write-XSS-Bypass.html | Exploit Third Party Advisory VDB Entry |
https://sec-consult.com/en/blog/advisories/multiple-critical-vulnerabilities-in-salto-proaccess-space/ | Exploit Third Party Advisory |
Configurations
Information
Published : 2019-12-03 12:15
Updated : 2019-12-10 18:57
NVD link : CVE-2019-19458
Mitre link : CVE-2019-19458
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
saltosystem
- proaccess_space