CVE-2018-2380

Posted on 2018년 3월 2일2018년 3월 2일 by admin

CVE-2018-2380

SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.

Source: CVE-2018-2380

답글 남기기 응답 취소