CVE-2019-16384

Published: 2020-06-04T16:15Z

Last Modified: 2024-11-21T04:30Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cybele Thinfinity VirtualUI 2.5.17.2 allows ../ path traversal that can be used for data exfiltration. This enables files outside of the web directory to be retrieved if the exact location is known and the user has permissions. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt