CVE-2020-24625

Unathenticated directory traversal in the ReceiverServlet class doGet() method can lead to arbitrary file reads in HPE Pay Per Use (PPU) Utility Computing Service (UCS) Meter version 1.9.
Configurations

Configuration 1 (hide)

cpe:2.3:a:hpe:utility_computing_service_meter:1.9:*:*:*:pay_per_use:*:*:*

History

No history.

Information

Published : 2020-09-23 13:15

Updated : 2024-02-04 21:23


NVD link : CVE-2020-24625

Mitre link : CVE-2020-24625

CVE.ORG link : CVE-2020-24625


JSON object : View

Products Affected

hpe

  • utility_computing_service_meter
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')