CVE-2021-30173
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject absolute path into Url parameter and access arbitrary file.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Jun-He Technology Ltd. | Quan-Fang-Wei-Tong-Xun system | 2007.2103 | affected |
Weaknesses
- CWE-36: CWE-36 Absolute Path Traversal
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.