Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-23 | CVE-2017-9829 | Path Traversal vulnerability in Vivotek products '/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. | 5.0 |
| 2017-06-21 | CVE-2017-2829 | Path Traversal vulnerability in Foscam C1 Indoor HD Camera Firmware 2.52.2.37 An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. | 4.0 |
| 2017-06-16 | CVE-2017-9097 | Path Traversal vulnerability in Hoytech Antiweb In Anti-Web through 3.8.7, as used on NetBiter FGW200 devices through 3.21.2, WS100 devices through 3.30.5, EC150 devices through 1.40.0, WS200 devices through 3.30.4, EC250 devices through 1.40.0, and other products, an LFI vulnerability allows a remote attacker to read or modify files through a path traversal technique, as demonstrated by reading the password file, or using the template parameter to cgi-bin/write.cgi to write to an arbitrary file. | 6.4 |
| 2017-06-13 | CVE-2017-6681 | Path Traversal vulnerability in Cisco Ultra Services Framework 21.0.0 A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to execute a relative path traversal attack, enabling an attacker to read sensitive files on the system. | 5.0 |
| 2017-06-09 | CVE-2016-7826 | Path Traversal vulnerability in Buffalotech Wnc01Wh Firmware Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests. | 4.0 |
| 2017-06-09 | CVE-2016-7825 | Path Traversal vulnerability in Buffalotech Wnc01Wh Firmware Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands. | 4.0 |
| 2017-06-09 | CVE-2016-7802 | Path Traversal vulnerability in Cybozu Garoon Directory traversal vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to read arbitrary files via unspecified vectors. | 4.0 |
| 2017-06-07 | CVE-2015-8235 | Path Traversal vulnerability in Call-Cc Spiffy Directory traversal vulnerability in Spiffy before 5.4. | 7.5 |
| 2017-06-07 | CVE-2015-7888 | Path Traversal vulnerability in Samsung Galaxy S6 Edge Firmware G925Vvru1Aoe2 Directory traversal vulnerability in the WifiHs20UtilityService on the Samsung S6 Edge LRX22G.G925VVRU1AOE2 allows remote attackers to overwrite or create arbitrary files as the system-level user via a .. | 7.8 |
| 2017-06-05 | CVE-2017-8841 | Path Traversal vulnerability in Peplink products Arbitrary file deletion exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. | 7.5 |