CVE-2017-2098
NONE EPSS 82.6%
Published Apr 28, 20179y ago · Modified Jun 17, 20262w ago
Published Apr 28, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
Threat Intelligence
EPSS Exploit Probability
82.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-22 Path Traversal Resource Mgmt
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| cubecart | cubecart | * | ≤6.1.3 |
References 3
- jvn.jp http://jvn.jp/en/jp/JVN81618356/index.html
- securityfocus.com http://www.securityfocus.com/bid/95866
- forums.cubecart.com https://forums.cubecart.com/topic/52088-cubecart-614-released/
Remediation
- forums.cubecart.com https://forums.cubecart.com/topic/52088-cubecart-614-released/