Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server.
References
Link | Resource |
---|---|
http://reprisesoftware.com | Product |
https://github.com/blakduk/Advisories/blob/main/Reprise%20License%20Manager/README.md | Third Party Advisory |
http://reprise.com | Not Applicable |
Configurations
Information
Published : 2023-01-20 04:15
Updated : 2023-01-27 06:03
NVD link : CVE-2021-37500
Mitre link : CVE-2021-37500
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
reprisesoftware
- reprise_license_manager