1 results (0.001 seconds)
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 1
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 1CVE-2021-35975
https://notcve.org/view.php?id=CVE-2021-35975
30 Nov 2023 — Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101) in Systematica Radius (up to v.3.9.256.777) allows remote attackers to read arbitrary files via a full pathname in GET parameter "file" in URL. Also: affected components in same product - HTTP Adapter (up to v.1.8.0.15), MSSQL MessageBus Proxy (up to v.1.1.06), Financial Calculator (up to v.1.3.05), FIX Adapter (up to v.2.4.0.25) Vulnerabilidad de path traversal absoluto en el componente Systematica SMTP Adapt... • https://github.com/fbkcs/CVE-2021-35975 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •