CVE-2021-47724

MEDIUM

Stvs Provision - Path Traversal

Title source: rule

Description

STVS ProVision 5.9.10 contains a path traversal vulnerability that allows authenticated attackers to access arbitrary files by manipulating the files parameter in the archive download functionality. Attackers can send GET requests to /archive/download with directory traversal sequences to read sensitive system files like /etc/passwd.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappsruby

https://www.exploit-db.com/exploits/49481

View Code ZIP pw:eip

References (4)

[Exploit, Technical Description] https://www.exploit-db.com/exploits/49481

[Third Party Advisory] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5623.php

[Not Applicable] http://www.stvs.ch

[Third Party Advisory] https://www.vulncheck.com/advisories/stvs-provision-authenticated-file-disclosure-via-archiverb

Scores

CVSS v3 6.5

EPSS 0.0023

EPSS Percentile 46.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (10)

stvs/provision 5.5

stvs/provision 5.6

stvs/provision 5.7

stvs/provision 5.8.6

stvs/provision 5.9.0

stvs/provision 5.9.1

stvs/provision 5.9.7

stvs/provision 5.9.9

stvs/provision 5.9.10

STVS SA/STVS ProVision 5.9.10 (build 2885-3a8219a)

Published Dec 09, 2025

Tracked Since Feb 18, 2026