Today > 1 Critical | 6 High | 24 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-11303

Nov. 21, 2024, 10:15 p.m.

Product(s) Impacted

Korenix JetPort 5601

  • through 1.2

Description

The pathname of the root directory to a Restricted Directory ('Path Traversal') vulnerability in Korenix JetPort 5601 allows Path Traversal.This issue affects JetPort 5601: through 1.2.

Weaknesses

CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

CWE ID: 22

Date

Published: Nov. 18, 2024, 2:15 p.m.

Last Modified: Nov. 21, 2024, 10:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

office@cyberdanube.com

References

https://cyberdanube.com/ office@cyberdanube.com

http://seclists.org/ af854a3a-2127-422b-91ae-364da2661108