7.5
CVSSv3

CVE-2019-14521

CVSSv4: NA | CVSSv3: 7.5 | CVSSv2: 5 | VMScore: 850 | EPSS: 0.00391 | KEV: Not Included
Published: 05/08/2019 Updated: 21/11/2024

Vulnerability Summary

The api/admin/logoupload Logo File upload feature in EMCA Energy Logserver 6.1.2 allows malicious users to send any kind of file to any location on the server via path traversal in the filename parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

emca energy logserver 6.1.2