CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2015-8228
https://notcve.org/view.php?id=CVE-2015-8228
24 Nov 2015 — Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors. Vulnerabilidad de salto de directorio en el servidor SFTP en routers Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200 y 3600 con software anterior a V200R006SPH003 permite a usuarios remotos autenticados acceder a directorios arbitrarios a través de vector... • http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-461676.htm • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •