← back
CVE-2021-34805

CVE-2021-34805

EPSS 26.8%
An issue was discovered in FAUST iServer before 9.0.019.019.7. For each URL request, it accesses the corresponding .fau file on the operating system without preventing %2e%2e%5c directory traversal.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/165701/FAUST-iServer-9.0.018.018.4-Local-File-Inclusion.htmlhttps://sec-consult.com/vulnerability-lab/http://www.land-software.de/lfs.fau?prj=iweb&dn=faust+iserver