CVE-2021-30173

Medium

Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject absolute path…

twcert·CWE-36·Published 2021-05-07

CVSS

6.5

EPSS

0.01

KEV

Exploits

cve.orgen

183 chars

Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject absolute path into Url parameter and access arbitrary file.

NVDen

183 chars

Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject absolute path into Url parameter and access arbitrary file.

NVDes

217 chars

Una vulnerabilidad de Inclusión de Archivos Locales del sistema de comunicación omnidireccional permite a un atacante autenticado remoto inyectar una ruta absoluta en el parámetro Url y acceder a un archivo arbitrario

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.0	8.0	2.9	AV:N/AC:L/Au:S/C:P/I:N/A:N
3.1	Primary	cve.org	6.5	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N