Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal in Campbell Scientific CSI Web Server and RTMC
Vulnerability Description
The Campbell Scientific CSI Web Server supports a command that will return the most recent file that matches a given expression. A specially crafted expression can lead to a path traversal vulnerability. This command combined with a specially crafted expression allows anonymous, unauthenticated access (allowed by default) by an attacker to files and directories outside of the webserver root directory they should be restricted to.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Campbell Scientific CSI Web Server 路径遍历漏洞
Vulnerability Description
Campbell Scientific CSI Web Server是Campbell Scientific公司的一个网络服务器。 Campbell Scientific CSI Web Server 1.6及之前版本存在路径遍历漏洞,该漏洞源于允许攻击者匿名、未经身份验证地访问应限制在Web服务器根目录之外的文件和目录。
CVSS Information
N/A
Vulnerability Type
N/A