An issue was discovered in PRTG Network Monitor before 21.1.66.1623. By invoking the screenshot functionality with prepared context paths, an attacker is able to verify the existence of certain files on the filesystem of the PRTG's Web server.
References
Link | Resource |
---|---|
https://www.paessler.com/prtg/history/stable#21.1.66.1623 | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-31T21:50:56
Updated: 2021-03-31T21:50:56
Reserved: 2021-02-15T00:00:00
Link: CVE-2021-27220
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-31T22:15:14.397
Modified: 2021-04-06T15:48:31.817
Link: CVE-2021-27220
JSON object: View
Redhat Information
No data.
CWE