An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-04T00:00:00
Updated: 2024-08-04T05:17:42.980Z
Reserved: 2024-02-04T00:00:00
Link: CVE-2021-46902
Vulnrichment
Updated: 2024-08-04T05:17:42.980Z
NVD
Status : Analyzed
Published: 2024-02-04T21:15:07.840
Modified: 2024-02-13T00:38:32.413
Link: CVE-2021-46902
Redhat
No data.