CVE-2018-14942

Published: 2018-08-05T18:29Z

Last Modified: 2024-11-21T03:50Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Harmonic NSG 9000 devices allow remote authenticated users to conduct directory traversal attacks, as demonstrated by "POST /PY/EMULATION_GET_FILE" or "POST /PY/EMULATION_EXPORT" with FileName=../../../passwd in the POST data. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt