Synerion TimeNet version 9.21 contains a directory traversal vulnerability where, on the "Name" parameter, the attacker can return to the root directory and open the host file. This might give the attacker the ability to view restricted files, which could provide the attacker with more information required to further compromise the system.
References
Link | Resource |
---|---|
https://www.gov.il/en/departments/faq/cve_advisories | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: INCD
Published: 2021-09-07T11:36:33
Updated: 2021-09-16T10:42:22
Reserved: 2021-07-12T00:00:00
Link: CVE-2021-36717
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-09-07T12:15:07.620
Modified: 2021-12-16T20:34:55.747
Link: CVE-2021-36717
JSON object: View
Redhat Information
No data.
CWE