Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-07 | CVE-2021-40978 | Path Traversal vulnerability in Mkdocs 1.2.2 The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enabling remote exploitation to obtain :sensitive information. | 7.5 |
| 2021-10-06 | CVE-2021-21683 | Path Traversal vulnerability in Jenkins The file browser in Jenkins 2.314 and earlier, LTS 2.303.1 and earlier may interpret some paths to files as absolute on Windows, resulting in a path traversal vulnerability allowing attackers with Overall/Read permission (Windows controller) or Job/Workspace permission (Windows agents) to obtain the contents of arbitrary files. | 6.5 |
| 2021-10-06 | CVE-2021-34711 | Path Traversal vulnerability in Cisco products A vulnerability in the debug shell of Cisco IP Phone software could allow an authenticated, local attacker to read any file on the device file system. | 5.5 |
| 2021-10-06 | CVE-2021-25485 | Path Traversal vulnerability in Google Android 10.0/11.0 Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release 1 allows attackers to write file as system UID via BT remote socket. | 8.0 |
| 2021-10-06 | CVE-2020-15941 | Path Traversal vulnerability in Fortinet Forticlient Endpoint Management Server A path traversal vulnerability [CWE-22] in FortiClientEMS versions 6.4.1 and below; 6.2.8 and below may allow an authenticated attacker to inject directory traversal character sequences to add/delete the files of the server via the name parameter of Deployment Packages. | 5.4 |
| 2021-10-05 | CVE-2021-41773 | Path Traversal vulnerability in multiple products A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. | 7.5 |
| 2021-10-04 | CVE-2021-41578 | Path Traversal vulnerability in Myscada Mydesigner mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. | 7.8 |
| 2021-10-04 | CVE-2021-41579 | Path Traversal vulnerability in Laquisscada Scada LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. | 7.8 |
| 2021-10-04 | CVE-2021-41595 | Path Traversal vulnerability in Salesagility Suitecrm SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. | 5.3 |
| 2021-10-04 | CVE-2021-41596 | Path Traversal vulnerability in Salesagility Suitecrm SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. | 5.3 |