CVE-2021-20124

⚠ KEVEPSS 93.6%

Draytek VigorConnect Path Traversal Vulnerability

加入 CISA KEV 日:2024/9/3

描述

Draytek VigorConnect contains a path traversal vulnerability in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges.

受影響套件(0)

OSV 沒有提供套件對應。