CVE-2016-6601

Published: 2017-01-23T21:59Z

Last Modified: 2024-11-21T02:56Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Directory traversal vulnerability in the file download functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parameter to servlets/FetchFile. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt