Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-25 | CVE-2021-37442 | Path Traversal vulnerability in Nchsoftware IVM Attendant 5.12 NCH IVM Attendant v5.12 and earlier allows path traversal via viewfile?file=/.. | 6.5 |
| 2021-07-25 | CVE-2021-37443 | Path Traversal vulnerability in Nchsoftware IVM Attendant 5.12 NCH IVM Attendant v5.12 and earlier allows path traversal via the logdeleteselected check0 parameter for file deletion. | 8.1 |
| 2021-07-25 | CVE-2021-37445 | Path Traversal vulnerability in Nchsoftware Quorum In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. | 6.5 |
| 2021-07-25 | CVE-2021-37446 | Path Traversal vulnerability in Nchsoftware Quorum In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. | 4.3 |
| 2021-07-25 | CVE-2021-37447 | Path Traversal vulnerability in Nchsoftware Quorum In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. | 8.1 |
| 2021-07-25 | CVE-2021-37469 | Path Traversal vulnerability in NCH Webdictate In NCH WebDictate v2.13 and earlier, authenticated users can abuse logprop?file=/.. | 6.5 |
| 2021-07-22 | CVE-2020-5370 | Path Traversal vulnerability in Dell EMC Openmanage Enterprise Dell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. | 6.8 |
| 2021-07-22 | CVE-2021-1617 | Path Traversal vulnerability in Cisco Intersight Virtual Appliance 1.0.9148/1.0.9150/1.0.9230 Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to conduct a path traversal or command injection attack on an affected system. | 6.5 |
| 2021-07-22 | CVE-2021-35521 | Path Traversal vulnerability in Idemia products A path traversal in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows remote authenticated attackers to achieve denial of services and information disclosure via TCP/IP packets. | 5.9 |
| 2021-07-20 | CVE-2021-35054 | Path Traversal vulnerability in Minecraft Minecraft before 1.17.1, when online-mode=false is configured, allows path traversal for deletion of arbitrary JSON files. | 7.5 |