CWE-22— Path Traversal
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.— MITRE CWE catalog
8,768 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-22page 77 of 176
- CVE-2021-35980HIGHCVSS 7.8EG 7.82023-09-06
Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Path traversal vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve…
- CVE-2021-36031HIGHCVSS 7.2EG 7.22021-09-01
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by a Path Traversal vulnerability via the `theme[preview_image]` parameter. An attacker with admin privileges could leverage this vu…
- CVE-2021-36156MEDIUMCVSS 5.3EG 5.32021-08-03
An issue was discovered in Grafana Loki through 2.2.1. The header value X-Scope-OrgID is used to construct file paths for rules files, and if crafted to conduct directory traversal such as ae ../../sensitive/path/in/deployment pathname, th…
- CVE-2021-36157MEDIUMCVSS 5.3EG 5.32021-08-03
An issue was discovered in Grafana Cortex through 1.9.0. The header value X-Scope-OrgID is used to construct file paths for rules files, and if crafted to conduct directory traversal such as ae ../../sensitive/path/in/deployment pathname, …
- CVE-2021-36168MEDIUMCVSS 6.5EG 6.52021-08-04
A Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Fortinet FortiPortal 6.x before 6.0.5, FortiPortal 5.3.x before 5.3.6 and any FortiPortal before 6.2.5 allows authenticated attacker to disclosure informat…
- CVE-2021-36286HIGHCVSS 7.1EG 7.12021-09-28
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can b…
- CVE-2021-36288HIGHCVSS 8.6EG 9.12022-04-08
Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which may lead unauthenticated users to read/write restricted files
- CVE-2021-36425MEDIUMCVSS 5.4EG 5.42023-02-03
Directory traversal vulnerability in phpcms 1.9.25 allows remote attackers to delete arbitrary files via unfiltered $file parameter to unlink method in include/inc_act/act_ftptakeover.php file.
- CVE-2021-36471CRITICALCVSS 9.8EG 9.82023-02-07
Directory Traversal vulnerability in AdminLTE 3.1.0 allows remote attackers to gain escalated privilege and view sensitive information via /admin/index2.html, /admin/index3.html URIs. Note: AdminLTE developers dispute that this a weakness …
- CVE-2021-36717MEDIUMCVSS 5.4EG 5.42021-09-07
Synerion TimeNet version 9.21 contains a directory traversal vulnerability where, on the "Name" parameter, the attacker can return to the root directory and open the host file. This might give the attacker the ability to view restricted fi…
- CVE-2021-3688MEDIUMCVSS 4.8EG 9.12022-08-26
A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a request URL contains dot-dot-semicolon(s). This flaw could allow an attacker to access unauthorized i…
- CVE-2021-37023MEDIUMCVSS 6.5EG 6.52021-11-23
There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause media files which can be reads and writes in non-distributed directories on any device on the network..
- CVE-2021-37064CRITICALCVSS 9.1EG 9.12021-12-07
There is a Improper Limitation of a Pathname to a Restricted Directory vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to arbitrary file created.
- CVE-2021-37087CRITICALCVSS 9.1EG 9.12021-12-07
There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can create arbitrary file.
- CVE-2021-37088CRITICALCVSS 9.1EG 9.12021-12-07
There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can write any content to any file.
- CVE-2021-3709MEDIUMCVSS 6.5EG 5.52021-10-01
Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versi…
- CVE-2021-37099CRITICALCVSS 9.1EG 9.12021-12-07
There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete any file.
- CVE-2021-3710MEDIUMCVSS 6.5EG 6.52021-10-01
An information disclosure via path traversal was discovered in apport/hookutils.py function read_file(). This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 …
- CVE-2021-37124MEDIUMCVSS 6.5EG 6.52021-10-27
There is a path traversal vulnerability in Huawei PC product. Because the product does not filter path with special characters,attackers can construct a file path with special characters to exploit this vulnerability. Successful exploitati…
- CVE-2021-37126HIGHCVSS 7.5EG 7.52022-01-03
Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability .Successful exploitation of this vulnerability may cause the directory is traversed.
- CVE-2021-37128CRITICALCVSS 9.8EG 9.82022-01-03
HwPCAssistant has a Path Traversal vulnerability .Successful exploitation of this vulnerability may write any file.
- CVE-2021-37130HIGHCVSS 7.5EG 7.52021-10-27
There is a path traversal vulnerability in Huawei FusionCube 6.0.2.The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a directory that is located underneath a restricted p…
- CVE-2021-37196MEDIUMCVSS 6.5EG 6.52022-01-11
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.3 (All versions >= V10.3.3.3 only if web components are us…
- CVE-2021-37200HIGHCVSS 7.7EG 7.72021-09-14
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1). An attacker with access to the webserver of an affected system could download arbitrary files from the underlying filesystem by sending a specially crafted HTTP re…
- CVE-2021-37293MEDIUMCVSS 6.5EG 6.52022-04-11
A Directory Traversal vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 via the page GET parameter in index.php.
- CVE-2021-37317CRITICALCVSS 9.1EG 9.12023-02-03
Directory Traversal vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version before 3.0.0.4.386.41634 allows remote attackers to write arbitrary files via improper sanitation on the target for COPY and MOVE operations.
- CVE-2021-37343HIGHCVSS 8.8EG 8.82021-08-13
A path traversal vulnerability exists in Nagios XI below version 5.8.5 AutoDiscovery component and could lead to post authenticated RCE under security context of the user running Nagios.
- CVE-2021-37347HIGHCVSS 7.8EG 7.82021-08-13
Nagios XI before version 5.8.5 is vulnerable to local privilege escalation because getprofile.sh does not validate the directory name it receives as an argument.
- CVE-2021-37367HIGHCVSS 7.8EG 7.82021-08-10
CTparental before 4.45.07 is affected by a code execution vulnerability in the CTparental admin panel. Because The file "bl_categories_help.php" is vulnerable to directory traversal, an attacker can create a file that contains scripts and …
- CVE-2021-37439MEDIUMCVSS 6.5EG 6.52021-07-25
NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability.
- CVE-2021-37440MEDIUMCVSS 6.5EG 6.52021-07-25
NCH Axon PBX v2.22 and earlier allows path traversal for file disclosure via the logprop?file=/.. substring.
- CVE-2021-37441HIGHCVSS 8.8EG 8.82021-07-25
NCH Axon PBX v2.22 and earlier allows path traversal for file deletion via the logdelete?file=/.. substring.
- CVE-2021-37442MEDIUMCVSS 6.5EG 6.52021-07-25
NCH IVM Attendant v5.12 and earlier allows path traversal via viewfile?file=/.. to read files.
- CVE-2021-37443HIGHCVSS 8.1EG 8.12021-07-25
NCH IVM Attendant v5.12 and earlier allows path traversal via the logdeleteselected check0 parameter for file deletion.
- CVE-2021-37444HIGHCVSS 8.8EG 8.82021-07-25
NCH IVM Attendant v5.12 and earlier suffers from a directory traversal weakness upon uploading plugins in a ZIP archive. This can lead to code execution if a ZIP element's pathname is set to a Windows startup folder, a file for the inbuilt…
- CVE-2021-37445MEDIUMCVSS 6.5EG 6.52021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. for file reading.
- CVE-2021-37446MEDIUMCVSS 4.3EG 4.32021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. for file reading.
- CVE-2021-37447HIGHCVSS 8.1EG 8.12021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion.
- CVE-2021-37469MEDIUMCVSS 6.5EG 6.52021-07-25
In NCH WebDictate v2.13 and earlier, authenticated users can abuse logprop?file=/.. path traversal to read files on the filesystem.
- CVE-2021-37500HIGHCVSS 8.1EG 8.12023-01-20
Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server.
- CVE-2021-37532MEDIUMCVSS 4.3EG 4.32021-09-14
SAP Business One version - 10, due to improper input validation, allows an authenticated User to gain access to directory and view the contents of index in the directory, which would otherwise be restricted to high privileged User.
- CVE-2021-3762CRITICALCVSS 9.8EG 9.82022-03-03
A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentiall…
- CVE-2021-37701HIGHCVSS 8.2EG 8.22021-08-31
The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by…
- CVE-2021-37712HIGHCVSS 8.2EG 8.22021-08-31
The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified b…
- CVE-2021-37713HIGHCVSS 8.2EG 8.22021-08-31
The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of…
- CVE-2021-37728MEDIUMCVSS 6.5EG 6.52021-09-07
A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.8.0.1, 8.7.1.4, 8.6.0.11, 8.5.0.13. Aruba has released patches for ArubaOS that address this security vulnerability.
- CVE-2021-37729MEDIUMCVSS 6.5EG 6.52021-09-07
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.3, 8.6.0.9, 8.5.0.12, 8.3.0.16, 6.5.4.19, 6.4.4.25. Aruba has …
- CVE-2021-37731MEDIUMCVSS 6.2EG 6.22021-09-07
A local path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.12, 8.3.0.16. Aruba has released patches for …
- CVE-2021-37733MEDIUMCVSS 4.9EG 4.92021-09-07
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.11, 8.3.0.16. Aruba has released patches for…
- CVE-2021-37734MEDIUMCVSS 6.5EG 6.52021-10-12
A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.19 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8…
Map vulnerabilities like CWE-22 to your infrastructure
EchelonGraph correlates every CVE — across CWE-22 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →