Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows remote attackers to create arbitrary files and consequently execute arbitrary code via unspecified vectors, aka ZDI-CAN-2031.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HP Service Virtualization 目录遍历漏洞
Vulnerability Description
HP Service Virtualization是美国惠普(HP)公司的一套应用生命周期管理(ALM)解决方案。该方案可借助虚拟化服务更快的开发和测试应用,并能够消除开发及测试中产生的延迟。 HP Service Virtualization 3.50.1之前的3.x版本中的CommunicationServlet存在目录遍历漏洞。程序启用AutoPass许可证服务器时,远程攻击者可利用该漏洞创建任意文件,进而执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A