Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the web interface of Parallels Remote Application Server (RAS) 15.5 Build 16140, a vulnerability exists due to improper validation of the file path when requesting a resource under the "RASHTML5Gateway" directory. A remote, unauthenticated attacker could exploit this weakness to read arbitrary files from the vulnerable system using path traversal sequences.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Parallels Remote Application Server 安全漏洞
Vulnerability Description
Parallels Remote Application Server(RAS)是美国Parallels公司的一套虚拟应用程序和桌面交付解决方案。该方案能够为网络中的设备提供远程访问虚拟桌面和应用程序的功能。 Parallels RAS 15.5 Build 16140版本中的Web界面存在安全漏洞,该漏洞源于程序没有正确的校验文件路径。远程攻击者可借助目录遍历序列利用该漏洞从受影响系统中读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A