CVE-2016-8206
🟡 Monitoruj
Podatność na przejście katalogu w Brocade Network Advisor umożliwia zdalne usuwanie plików.
CVSS
7.5
EPSS
10.4%
Exploit
none
Vendor
brocade
Opis źródłowy (NVD)
A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary files, and consequently delete the files.
path-traversal
Brak patcha
Źródła i daty
| Źródło | Wartość |
|---|---|
| NVD – CVSS | 7.5 |
| CISA KEV (aktywnie wykorzystywane) | Nie |
| FIRST EPSS (prawdopodobieństwo exploita) | 10.4% |
| Opublikowano (NVD) | 2017-01-14 19:59:00 UTC |
| Ostatnia modyfikacja (NVD) | 2026-05-13 00:24:29 UTC |
Referencje
- http://www.securityfocus.com/bid/95692 (sirt@brocade.com) [Third Party Advisory, VDB Entry]
- http://www.zerodayinitiative.com/advisories/ZDI-17-051 (sirt@brocade.com)
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03785en_us (sirt@brocade.com)
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-179 (sirt@brocade.com)