CVE-2023-24256
https://notcve.org/view.php?id=CVE-2023-24256
06 Jul 2023 — An issue in the com.nextev.datastatistic component of NIO EC6 Aspen before v3.3.0 allows attackers to escalate privileges via path traversal. • https://github.com/hhj4ck/JailBreakEC6/blob/main/BugReport.md • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2013-2619 – Aspen 0.8 - Directory Traversal
https://notcve.org/view.php?id=CVE-2013-2619
18 Mar 2014 — Directory traversal vulnerability in Aspen before 0.22 allows remote attackers to read arbitrary files via a .. (dot dot) to the default URI. Vulnerabilidad de salto de directorio en Aspen anterior a 0.22 permite a atacantes remotos leer archivos arbitrarios a través de un .. (punto punto) hacia la URI por defecto. • https://www.exploit-db.com/exploits/24915 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •