CVE-2021-22857

The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily.

Summary:

The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily.

Reference Links(if available):

  • https://www.twcert.org.tw/tw/cp-132-4395-c01f7-1.html
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)