Seventh D-Guard HTTP GET Request path traversal

A vulnerability classified as problematic has been found in Seventh D-Guard up to 20250206. This affects an unknown part of the component HTTP GET Request Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

对路径名的限制不恰当(路径遍历)

Seventh D-Guard 路径遍历漏洞

Seventh D-Guard是Seventh公司的一款多品牌视频监控管理系统。 Seventh D-Guard 20250206版本之前存在路径遍历漏洞，该漏洞源于HTTP GET Request Handler模块包含一个路径遍历问题。

N/A

N/A