CVE-2020-5639: Path Traversal
First published: Mon Dec 14 2020(Updated: )
Directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2 allows remote attackers to upload an arbitrary file in a specific directory via unspecified vectors. As a result, an arbitrary OS command may be executed.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Soliton Filezen | >=3.0.0<=4.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-5639?
CVE-2020-5639 is a directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2.
How severe is CVE-2020-5639?
CVE-2020-5639 has a severity rating of 9.8 (critical).
What is the affected software for CVE-2020-5639?
The affected software for CVE-2020-5639 is Soliton FileZen versions from V3.0.0 to V4.2.2.
How can remote attackers exploit CVE-2020-5639?
Remote attackers can exploit CVE-2020-5639 by uploading an arbitrary file in a specific directory via unspecified vectors.
What is the potential impact of CVE-2020-5639?
The potential impact of CVE-2020-5639 is the execution of an arbitrary OS command.
- collector/nvd-index
- vendor/soliton
- canonical/soliton filezen
- version/soliton filezen/3.0.0
- version/soliton filezen/4.2.2