CVE-2021-20123

⚠ KEVEPSS 93.5%

Draytek VigorConnect Path Traversal Vulnerability

加入 CISA KEV 日:2024/9/3

描述

Draytek VigorConnect contains a path traversal vulnerability in the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges.

受影響套件(0)

OSV 沒有提供套件對應。