← volver
CVE-2019-14362

CVE-2019-14362

EPSS 2.1%
Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://grep.blog/directory-traversal-openbravo/https://issues.openbravo.com/view.php?id=41413https://www.sitincloud.com/securite/directory-traversal-openbravo-erp/