Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-27 | CVE-2020-27160 | Path Traversal vulnerability in Westerndigital MY Cloud Firmware Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114 (issue 3 of 3). | 9.8 |
| 2020-10-22 | CVE-2020-9920 | Path Traversal vulnerability in Apple products A path handling issue was addressed with improved validation. | 9.1 |
| 2020-10-21 | CVE-2020-3550 | Path Traversal vulnerability in Cisco products A vulnerability in the sfmgr daemon of Cisco Firepower Management Center (FMC) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to perform directory traversal and access directories outside the restricted path. | 8.1 |
| 2020-10-15 | CVE-2019-17640 | Path Traversal vulnerability in Eclipse Vert.X In Eclipse Vert.x 3.4.x up to 3.9.4, 4.0.0.milestone1, 4.0.0.milestone2, 4.0.0.milestone3, 4.0.0.milestone4, 4.0.0.milestone5, 4.0.0.Beta1, 4.0.0.Beta2, and 4.0.0.Beta3, StaticHandler doesn't correctly processes back slashes on Windows Operating systems, allowing, escape the webroot folder to the current working directory. | 9.8 |
| 2020-10-12 | CVE-2020-15012 | Path Traversal vulnerability in Sonatype Nexus Repository Manager A Directory Traversal issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.19. | 8.6 |
| 2020-10-12 | CVE-2020-9106 | Path Traversal vulnerability in Huawei P30 PRO Firmware HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) have a path traversal vulnerability. | 4.6 |
| 2020-10-12 | CVE-2020-4776 | Path Traversal vulnerability in IBM Curam Social Program Management 7.0.10.0/7.0.9.0 A path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote attacker to traverse directories on the system. | 7.5 |
| 2020-10-08 | CVE-2020-3597 | Path Traversal vulnerability in Cisco Nexus Data Broker 3.9(0) A vulnerability in the configuration restore feature of Cisco Nexus Data Broker software could allow an unauthenticated, remote attacker to perform a directory traversal attack on an affected device. | 5.4 |
| 2020-10-07 | CVE-2020-13347 | Path Traversal vulnerability in Gitlab A command injection vulnerability was discovered in Gitlab runner versions prior to 13.2.4, 13.3.2 and 13.4.1. | 9.1 |
| 2020-10-07 | CVE-2020-25985 | Path Traversal vulnerability in Monocms 1.0 MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. | 8.1 |