CVE-2021-34805

Published: 31/01/2022 Updated: 04/02/2022

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 695

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

An issue exists in FAUST iServer prior to 9.0.019.019.7. For each URL request, it accesses the corresponding .fau file on the operating system without preventing %2e%2e%5c directory traversal.

Vulnerable Product	Search on Vulmon	Subscribe to Product
land-software faust iserver

Land Software's FAUST iServer versions 900170171-3 through 900180184 suffer from a local file inclusion vulnerability ...

SEC Consult Vulnerability Lab Security Advisory < 20220120-0 > ======================================================================= title: Local file inclusion vulnerability product: Land Software - FAUST iServer vulnerable version: 900170171-3 - 900180184 fixed version: 900190197, Version 1 ...

CWE-22 http://packetstormsecurity.com/files/165701/FAUST-iServer-9.0.018.018.4-Local-File-Inclusion.html http://www.land-software.de/lfs.fau?prj=iweb&dn=faust+iserver https://sec-consult.com/vulnerability-lab/https://nvd.nist.gov http://seclists.org/fulldisclosure/2022/Jan/55

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-34805

Vulnerability Summary

Vulnerability Trend

Exploits

Mailing Lists

References

Vulmon Search

About

Products

Connect