CVE-2020-13377

CVSS V2 None CVSS V3 None

Description

The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and write access to sensitive files.

Overview

CVE ID
CVE-2020-13377

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-12T11:15:12

Last Modified Date
2023-05-12T11:15:12

References

Reference URL	Reference Tags
https://inf0seq.github.io/cve/2020/04/21/Path-Traversal-in-Enterprise-loadbalancer-VA-MAX-v8.3.8-and-earlier.html
https://www.loadbalancer.org/products/virtual/enterprise-va-max/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2020-13377
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13377

History

Created	Old Value	New Value	Data Type	Notes
2023-05-12 12:00:26				Added to TrackCVE