CVE-2016-3976

⚠ KEVEPSS 76.3%

SAP NetWeaver Directory Traversal Vulnerability

加入 CISA KEV 日:2021/11/3

描述

SAP NetWeaver Application Server Java Platforms contains a directory traversal vulnerability via a ..\ (dot dot backslash) in the fileName parameter to CrashFileDownloadServlet. This allows remote attackers to read files.

受影響套件(0)

OSV 沒有提供套件對應。