Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-22 (对路径名的限制不恰当(路径遍历)) — Vulnerability Class 3336

3336 vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-33182 Synology DiskStation Manager 路径遍历漏洞 — Synology DiskStation Manager (DSM) 5.0 Medium2021-06-01
CVE-2021-33183 Docker 路径遍历漏洞 — Synology Docker 7.9 High2021-06-01
CVE-2021-29088 Synology DiskStation Manager 路径遍历漏洞 — Synology DiskStation Manager (DSM) 7.8 High2021-06-01
CVE-2021-29492 Bypass of path matching rules using escaped slash characters — envoy 8.1 High2021-05-28
CVE-2021-32643 StaticFile.fromUrl can leak presence of a directory — http4s 5.8 Medium2021-05-27
CVE-2009-3721 ytnef 路径遍历漏洞 — ytnef 7.8 -2021-05-26
CVE-2021-22736 Schneider Electric homeLYnk和spaceLYnk 路径遍历漏洞 — homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior 7.5 -2021-05-26
CVE-2021-21001 WAGO: PFC200 Access to files outside the home directory — Series PFC200 Controller 9.1 Critical2021-05-24
CVE-2021-32633 Remote Code Execution via traversal in TAL expressions — Zope 6.8 Medium2021-05-21
CVE-2021-27461 Emerson Rosemount X-STREAM Gas Analyzer 路径遍历漏洞 — Emerson Rosemount X-STREAM Gas Analyzer 7.5 -2021-05-20
CVE-2021-1532 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Read Vulnerability — Cisco TelePresence Endpoint Software (TC/CE) 6.5 Medium2021-05-06
CVE-2021-31421 Corel Parallels Desktop 路径遍历漏洞 — Desktop 7.9 -2021-04-29
CVE-2020-36321 Directory traversal in development mode handler in Vaadin 14 and 15-17 — Vaadin 5.9 Medium2021-04-23
CVE-2021-24242 Tutor LMS < 1.8.8 - Authenticated Local File Inclusion — Tutor LMS – eLearning and online course solution 5.5 -2021-04-22
CVE-2020-25243 Siemens LOGO! Soft Comfort 路径遍历漏洞 — LOGO! Soft Comfort 5.1 Medium2021-04-22
CVE-2021-0231 Junos OS: SRX, vSRX Series: J-Web Path traversal vulnerability in SRX and vSRX Series leads to information disclosure. — Junos OS 6.5 Medium2021-04-22
CVE-2021-27278 Corel Parallels Desktop 路径遍历漏洞 — Desktop 8.2 -2021-04-22
CVE-2021-20023 Sonicwall On-premise Email 路径遍历漏洞 — Email Security 4.9 -2021-04-20
CVE-2021-22720 施耐德 Schneider Electric C-Bus Toolkit 路径遍历漏洞 — C-Bus Toolkit V1.15.7 and prior 7.2 -2021-04-13
CVE-2021-22719 施耐德 Schneider Electric C-Bus Toolkit 路径遍历漏洞 — C-Bus Toolkit V1.15.7 and prior 8.8 -2021-04-13
CVE-2021-22718 施耐德电气 C-Bus Toolkit 路径遍历漏洞 — C-Bus Toolkit V1.15.7 and prior 6.5 -2021-04-13
CVE-2021-22717 施耐德 Schneider Electric C-Bus Toolkit 路径遍历漏洞 — C-Bus Toolkit V1.15.7 and prior 8.0 -2021-04-13
CVE-2021-25361 Samsung SMR 安全漏洞 — Samsung Mobile Devices 7.9 High2021-04-09
CVE-2021-28172 Vangene deltaFlow E-platform - Path Traversal — deltaFlow E-platform 7.5 High2021-04-06
CVE-2021-28209 ASUS BMC's firmware: path traversal - Delete video file function — BMC firmware for ASMB9-iKVM 4.9 Medium2021-04-06
CVE-2021-28208 ASUS BMC's firmware: path traversal - Get video file function — BMC firmware for ASMB9-iKVM 4.9 Medium2021-04-06
CVE-2021-28207 ASUS BMC's firmware: path traversal - Get Help file function — BMC firmware for ASMB9-iKVM 4.9 Medium2021-04-06
CVE-2021-28205 ASUS BMC's firmware: path traversal - Delete SOL video file function — BMC firmware for Z10PR-D16 4.9 Medium2021-04-06
CVE-2021-28206 ASUS BMC's firmware: path traversal - Record video file function — BMC firmware for ASMB9-iKVM 4.9 Medium2021-04-06
CVE-2021-27276 NETGEAR ProSAFE Network Management System 路径遍历漏洞 — ProSAFE Network Management System 7.1 -2021-03-29

Vulnerabilities classified as CWE-22 (对路径名的限制不恰当(路径遍历)) represent 3336 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.