Skip to content

RVD#868: roller 8.23 allows Directory Traversal via a forged HTTP request. #868

New issue
New issue
Open
Open
RVD#868: roller 8.23 allows Directory Traversal via a forged HTTP request.#868
Labels
severity: medium4.0 - 6.9triageNeeds triagevendor: Fanucvulnerability
@vmayoral

Description

@vmayoral
vmayoral
opened on Nov 27, 2019
{
    "id": 868,
    "title": "RVD#868: roller 8.23 allows Directory Traversal via a forged HTTP request.",
    "type": "vulnerability",
    "description": "The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 allows Directory Traversal via a forged HTTP request.",
    "cwe": "None",
    "cve": "CVE-2019-13584",
    "keywords": "",
    "system": "",
    "vendor": "Fanuc",
    "severity": {
        "rvss-score": 0,
        "rvss-vector": "",
        "severity-description": "",
        "cvss-score": 5.0,
        "cvss-vector": "CVSS:3.0/AV:N/AC:L/Au:N/C:P/I:N/A:N"
    },
    "links": [
        "https://vulners.com/cve/CVE-2019-13584",
        "https://github.com/aliasrobotics/RVD/issues/868"
    ],
    "flaw": {
        "phase": "unknown",
        "specificity": "N/A",
        "architectural-location": "N/A",
        "application": "N/A",
        "subsystem": "N/A",
        "package": "N/A",
        "languages": "None",
        "date-detected": "",
        "detected-by": "",
        "detected-by-method": "N/A",
        "date-reported": "2019-07-17",
        "reported-by": "",
        "reported-by-relationship": "N/A",
        "issue": "https://github.com/aliasrobotics/RVD/issues/868",
        "reproducibility": "",
        "trace": "",
        "reproduction": "",
        "reproduction-image": ""
    },
    "exploitation": {
        "description": "",
        "exploitation-image": "",
        "exploitation-vector": ""
    },
    "mitigation": {
        "description": "",
        "pull-request": "",
        "date-mitigation": null
    }
}

Metadata

Metadata

Assignees

No one assigned

    Labels

    severity: medium4.0 - 6.9triageNeeds triagevendor: Fanucvulnerability

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions