CVE-2021-35380

HIGH NUCLEI

Solari di Udine TTServer 3.24.0.2 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-35380. PoCs published by Fabiano Golluscio. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated arbitrary file read vulnerability in TermTalk Server 3.24.0.2 via a path traversal attack. The PoC uses a simple curl command to read the hosts file by manipulating the 'valore' parameter.

Description

A Directory Traversal vulnerability exists in Solari di Udine TermTalk Server (TTServer) 3.24.0.2, which lets an unauthenticated malicious user gain access to the files on the remote system by gaining access to the relative path of the file they want to download (http://url:port/file?valore).

Exploits (1)

exploitdb WORKING POC

by Fabiano Golluscio · textremotewindows

https://www.exploit-db.com/exploits/50638

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated arbitrary file read vulnerability in TermTalk Server 3.24.0.2 via a path traversal attack. The PoC uses a simple curl command to read the hosts file by manipulating the 'valore' parameter.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: TermTalk Server 3.24.0.2

No auth needed

Prerequisites: Network access to the vulnerable TermTalk Server

MITRE ATT&CK

T1005 - Data from Local System T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

TermTalk Server 3.24.0.2 - Local File Inclusion

HIGHby fxploit

References (3)

Core 3

Core References

Third Party Advisory x_refsource_misc

https://www.swascan.com/it/security-blog/

Third Party Advisory x_refsource_misc

https://www.swascan.com/solari-di-udine/

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/50638

Scores

CVSS v3 7.5

EPSS 0.3895

EPSS Percentile 98.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-22

Status published

Products (1)

solari/termtalk_server 3.24.0.2

Published Feb 15, 2022

Tracked Since Feb 18, 2026