CyberSec.Space Logo
返回 CVE 浏览器

CVE-2011-4788

HIGH
7.8
CVSS Severity Score
EPSS Score0.1330%
EPSS Percentile24.12th
Published2012年1月13日
Last Modified2026年4月29日

Vulnerability Description

Absolute path traversal vulnerability in the web interface on HP StorageWorks P2000 G3 MSA array systems allows remote attackers to read arbitrary files via a pathname in the URI.

Affected Platforms (CPE)

🔌
Hp

Storageworks P2000 G3 Msa Fc\/iscsi Dual Combo Controller Lff Array System

= aw567a
🔌
Hp

Storageworks P2000 G3 Msa Fibre Channel Dual Controller Lff Array System

= ap845a
🔌
Hp

Storageworks P2000 G3 Msa Fibre Channel Dual Controller Sff Array System

= ap846a

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2012-01/0088.html
🔗 http://marc.info/?l=bugtraq&m=132672509901841&w=2
🔗 http://zerodayinitiative.com/advisories/ZDI-12-015/
🔗 http://archives.neohapsis.com/archives/bugtraq/2012-01/0088.html
🔗 http://marc.info/?l=bugtraq&m=132672509901841&w=2
🔗 http://zerodayinitiative.com/advisories/ZDI-12-015/

相关漏洞威胁

CVE-2011-064710.0

The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x...

CVE-2011-007510.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...

CVE-2011-007410.0

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before...

CVE-2011-075810.0

The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cau...