CVE-2020-24624

Summary

Unathenticated directory traversal in the DownloadServlet class execute() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.

Affected Software

VendorProductVersion RangeStatus
n/aHPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter1.9affected

Weaknesses

  • Directory traversal information disclosure vulnerability

ADP Enrichment

CVE Program Container

Additional References

References