Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function store in Roothub 2.6.0 allows remote attackers with low privlege to arbitrarily upload files via /common/upload API, which could lead to remote arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-13T14:17:10
Updated: 2024-08-03T05:41:11.178Z
Reserved: 2022-03-28T00:00:00
Link: CVE-2022-28052
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-04-13T15:15:09.403
Modified: 2024-11-21T06:56:40.917
Link: CVE-2022-28052
Redhat
No data.