Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-22 | CVE-2021-21907 | Path Traversal vulnerability in Garrett IC Module CMA 5.0 A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0. | 4.9 |
| 2021-12-22 | CVE-2021-21908 | Path Traversal vulnerability in Garrett IC Module Firmware 5.0 Specially-crafted command line arguments can lead to arbitrary file deletion. | 6.5 |
| 2021-12-22 | CVE-2021-21909 | Path Traversal vulnerability in Garrett IC Module Firmware 5.0 Specially-crafted command line arguments can lead to arbitrary file deletion in the del .cnt|.log file delete command. | 8.1 |
| 2021-12-22 | CVE-2021-45418 | Path Traversal vulnerability in Starcharge products Certain Starcharge products are vulnerable to Directory Traversal via main.cgi. | 8.8 |
| 2021-12-17 | CVE-2021-23797 | Path Traversal vulnerability in Http-Server-Node Project Http-Server-Node All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is. | 9.8 |
| 2021-12-17 | CVE-2021-32498 | Path Traversal vulnerability in Sick Sopas Engineering Tool SICK SOPAS ET before version 4.8.0 allows attackers to manipulate the pathname of the emulator and use path traversal to run an arbitrary executable located on the host system. | 8.6 |
| 2021-12-16 | CVE-2021-3960 | Path Traversal vulnerability in Bitdefender Gravityzone 3.3.8.249 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. | 7.8 |
| 2021-12-15 | CVE-2021-43831 | Path Traversal vulnerability in Gradio Project Gradio Gradio is an open source framework for building interactive machine learning models and demos. | 7.7 |
| 2021-12-15 | CVE-2021-45043 | Path Traversal vulnerability in Hd-Network Real-Time Monitoring System Project Hd-Network Real-Time Monitoring System 2.0 HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via the /language/lang s_Language parameter. | 7.5 |
| 2021-12-14 | CVE-2021-44232 | Path Traversal vulnerability in SAP Saf-T Framework SAF-T Framework Transaction SAFTN_G allows an attacker to exploit insufficient validation of path information provided by normal user, leading to full server directory access. | 7.7 |