Vulnerability Description
Directory traversal vulnerability in FileZen V3.0.0 to V4.2.1 allows remote attackers to upload an arbitrary file in the specific directory in FileZen via unspecified vectors.
CVSS Score
7.5
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Soliton | Filezen | >= 3.0.0, <= 4.2.1 |
Related Weaknesses (CWE)
References
- http://jvn.jp/en/jp/JVN95355683/index.htmlThird Party Advisory
- https://www.soliton.co.jp/support/2018/003328.htmlPatchVendor Advisory
- http://jvn.jp/en/jp/JVN95355683/index.htmlThird Party Advisory
- https://www.soliton.co.jp/support/2018/003328.htmlPatchVendor Advisory
FAQ
What is CVE-2018-0693?
CVE-2018-0693 is a vulnerability with a CVSS score of 7.5 (HIGH). Directory traversal vulnerability in FileZen V3.0.0 to V4.2.1 allows remote attackers to upload an arbitrary file in the specific directory in FileZen via unspecified vectors.
How severe is CVE-2018-0693?
CVE-2018-0693 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0693?
Check the references section above for vendor advisories and patch information. Affected products include: Soliton Filezen.