CVE-2020-3452

⚠ KEVEPSS 94.4%

Cisco ASA and FTD Read-Only Path Traversal Vulnerability

加入 CISA KEV 日:2021/11/3

描述

Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an improper input validation vulnerability when HTTP requests process URLs. An attacker could exploit this vulnerability by sending a crafted HTTP request containing directory traversal character sequences to an affected device. A successful exploit could allow the attacker to view arbitrary files within the web services file system on the targeted device.

受影響套件(0)

OSV 沒有提供套件對應。