CVE-2021-4463

Summary

Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated arbitrary file download vulnerability in the 'downloads' endpoint. The 'fileName' parameter is not properly sanitized, allowing attackers to craft traversal sequences and access sensitive files outside the intended directory.

Affected Software

VendorProductVersion RangeStatus
Shenzhen Longjing Technology Co. Ltd.BEMS API0 <= 1.21affected

Weaknesses

  • CWE-552: CWE-552 Files or Directories Accessible to External Parties
  • CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References