Skybox Manager Client Application prior to 8.5.501 is prone to an arbitrary file upload vulnerability due to insufficient input validation of user-supplied files path when uploading files via the application. During a debugger-pause state, a local authenticated attacker can upload an arbitrary file and overwrite existing files within the scope of the affected application.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-10-02T21:00:00
Updated: 2024-08-05T19:34:39.940Z
Reserved: 2017-09-27T00:00:00
Link: CVE-2017-14771
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-10-03T01:29:02.590
Modified: 2024-11-21T03:13:30.250
Link: CVE-2017-14771
Redhat
No data.