CWE-22

High likelihood

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Parent: CWE-706 - Use of Incorrectly-Resolved Name or Reference

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

9,287 vulnerabilities with CWE-22
CVE-2015-2996
SysAid Help Desk Arbitrary File Download
CVE-2015-2995
SysAid < 15.1 - Remote Code Execution via RdsLogsEntry File Upload
CVE-2015-0779
Novell ZENworks Configuration Management < 11.3.2 - Remote Code Execution via UploadServlet uid Parameter
CVE-2015-2950
Brandon Bowles Open Explorer <0.254 - Path Traversal
CVE-2015-1493
Moodle < 2.5.9, 2.6.x < 2.6.8, 2.7.x < 2.7.5, 2.8.x < 2.8.3 - Authenticated Path Traversal via File Parameter
CVE-2015-3939
IDS NC854 and NC856 - Authenticated Path Traversal via Internal Web Server
CVE-2015-4068 CRITICAL KEV
Arcserve UDP < 5.0 Update 4 - Path Traversal via reportFileServlet or exportServlet
CVSS 9.1
CVE-2015-4031
Visualmining Netcharts Server - Path Traversal
CVE-2015-1550
Aruba Networks ClearPass Policy Manager <6.4.5 - Path Traversal
CVE-2015-0171
IBM Security SiteProtector 3.0-3.0.0.6, 3.1-3.1.0.3, 3.1.1-3.1.1.1 Path Traversal & Arbitrary File Write
CVE-2015-3301
TheCartPress <1.3.9.3 - Path Traversal
CVE-2015-3337
Elasticsearch <1.4.5, <1.5.2 - Path Traversal
CVE-2015-1398
Magento CE/EE <1.14.1.0 - Path Traversal
CVE-2015-1322
Ubuntu network-manager <0.9.10.0-4ubuntu15.1, 14.10 <0.9.8.8-0ubunt...
CVE-2015-0911
TransmitMail 1.0.11-1.5.8 - Path Traversal via Attachment Handling
CVE-2015-3035 HIGH KEV
TP-LINK Multiple Routers - Path Traversal via PATH_INFO
CVSS 7.5
CVE-2015-0906
Lhaplus < 1.70 - Path Traversal and Arbitrary File Write via Crafted Archive
CVE-2015-2775
Canonical Ubuntu Linux < 2.1.19 - Path Traversal
CVE-2015-1087
iPhone OS < 8.3 - Path Traversal via Backup Relative Path
CVE-2015-0557
ARJ Archiver < 3.10.22 - Path Traversal and Arbitrary File Write via Leading Slashes
CVE-2015-2166
Ericsson Drutt Mobile Service Delivery Platform 4,5,6 Path Traversal via Dot Dot Encoded Slash
CVE-2015-0666 HIGH KEV
Cisco Prime Data Center Network Manager < 7.1(1) - Path Traversal via fmserver Servlet
CVSS 7.5
CVE-2015-0984
Honeywell Excel Web - Path Traversal
CVE-2015-0665
Cisco AnyConnect Secure Mobility Client < 4.0(.00051) - Arbitrary File Write via Hostscan IPC Messages
CVE-2015-2304
libarchive < 3.1.2 - Path Traversal and Arbitrary File Write via bsdcpio Full Pathname
Details
Vulnerabilities 9,287
Exploit Likelihood High