Arbitrary File Upload Vulnerability in Drobo Pix Web Application on Drobo 5N2 NAS

CVE-2018-14707 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:C/A:N

Directory traversal in the Drobo Pix web application on Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to upload files to arbitrary locations.

Learn more about our Web App Pen Testing.