Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

DATE CVE VULNERABILITY TITLE RISK
2020-10-08 CVE-2020-3597 Path Traversal vulnerability in Cisco Nexus Data Broker 3.9(0)
A vulnerability in the configuration restore feature of Cisco Nexus Data Broker software could allow an unauthenticated, remote attacker to perform a directory traversal attack on an affected device.
network
low complexity
cisco CWE-22
5.4
5.4
2020-10-07 CVE-2020-13347 Path Traversal vulnerability in Gitlab
A command injection vulnerability was discovered in Gitlab runner versions prior to 13.2.4, 13.3.2 and 13.4.1.
network
low complexity
gitlab CWE-22
critical
 9.1
9.1
2020-10-07 CVE-2020-25985 Path Traversal vulnerability in Monocms 1.0
MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion.
network
low complexity
monocms CWE-22
8.1
8.1
2020-10-06 CVE-2020-26603 Path Traversal vulnerability in Google Android
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software.
network
low complexity
google CWE-22
5.3
5.3
2020-10-06 CVE-2020-1904 Path Traversal vulnerability in Whatsapp and Whatsapp Business
A path validation issue in WhatsApp for iOS prior to v2.20.61 and WhatsApp Business for iOS prior to v2.20.61 could have allowed for directory traversal overwriting files when sending specially crafted docx, xlsx, and pptx files as attachments to messages.
local
low complexity
whatsapp CWE-22
5.5
5.5
2020-10-06 CVE-2020-24219 Path Traversal vulnerability in Szuray products
An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97.
network
low complexity
szuray CWE-22
7.5
7.5
2020-10-02 CVE-2020-18191 Path Traversal vulnerability in Get-Simple Getsimplecms 3.3.15
GetSimpleCMS-3.3.15 is affected by directory traversal.
network
low complexity
get-simple CWE-22
critical
 9.1
9.1
2020-10-02 CVE-2020-18190 Path Traversal vulnerability in Bludit 3.8.1
Bludit v3.8.1 is affected by directory traversal.
network
low complexity
bludit CWE-22
critical
 9.1
9.1
2020-10-02 CVE-2020-25623 Path Traversal vulnerability in Erlang Erlang/Otp
Erlang/OTP 22.3.x before 22.3.4.6 and 23.x before 23.1 allows Directory Traversal.
network
low complexity
erlang CWE-22
7.5
7.5
2020-10-01 CVE-2020-5789 Path Traversal vulnerability in Teltonika-Networks Trb245 Firmware 00.02.04.03
Relative Path Traversal in Teltonika firmware TRB2_R_00.02.04.3 allows a remote, authenticated attacker to read the contents of arbitrary files on disk.
network
low complexity
teltonika-networks CWE-22
6.5
6.5