mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
947 B
947 B
CVE-2020-7478
%20(IGSS%20Version%20prior%20to%2014.0.0.20009)&color=blue)
Description
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a remote unauthenticated attacker to read arbitrary files from the IGSS server PC on an unrestricted or shared network when the IGSS Update Service is enabled.
POC
Reference
No PoCs from references.