Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-14 | CVE-2021-23043 | Path Traversal vulnerability in F5 products On BIG-IP, on all versions of 16.1.x, 16.0.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x, a directory traversal vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to access arbitrary files. | 6.5 |
| 2021-09-14 | CVE-2021-33685 | Path Traversal vulnerability in SAP Business ONE 10.0 SAP Business One version - 10.0 allows low-level authorized attacker to traverse the file system to access files or directories that are outside of the restricted directory. | 6.5 |
| 2021-09-14 | CVE-2021-37532 | Path Traversal vulnerability in SAP Business ONE 10.0 SAP Business One version - 10, due to improper input validation, allows an authenticated User to gain access to directory and view the contents of index in the directory, which would otherwise be restricted to high privileged User. | 4.3 |
| 2021-09-14 | CVE-2021-38163 | Path Traversal vulnerability in SAP Netweaver SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restriction, an attacker authenticated as a non-administrative user can upload a malicious file over a network and trigger its processing, which is capable of running operating system commands with the privilege of the Java Server process. | 8.8 |
| 2021-09-09 | CVE-2021-25450 | Path Traversal vulnerability in Google Android Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Sep-2021 Release 1 allows attackers to write file as system uid via remote socket. | 6.5 |
| 2021-09-08 | CVE-2021-1739 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-08 | CVE-2021-1740 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-08 | CVE-2021-1815 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-07 | CVE-2021-39500 | Path Traversal vulnerability in Eyoucms 1.5.4 Eyoucms 1.5.4 is vulnerable to Directory Traversal. | 7.5 |
| 2021-09-07 | CVE-2021-37728 | Path Traversal vulnerability in multiple products A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.8.0.1, 8.7.1.4, 8.6.0.11, 8.5.0.13. | 6.5 |