2 results (0.004 seconds)

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1

06 Jul 2023 — An issue in the com.nextev.datastatistic component of NIO EC6 Aspen before v3.3.0 allows attackers to escalate privileges via path traversal. • https://github.com/hhj4ck/JailBreakEC6/blob/main/BugReport.md • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 5.3EPSS: 7%CPEs: 1EXPL: 5

18 Mar 2014 — Directory traversal vulnerability in Aspen before 0.22 allows remote attackers to read arbitrary files via a .. (dot dot) to the default URI. Vulnerabilidad de salto de directorio en Aspen anterior a 0.22 permite a atacantes remotos leer archivos arbitrarios a través de un .. (punto punto) hacia la URI por defecto. • https://www.exploit-db.com/exploits/24915 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •