Directory Traversal Vulnerability in Gigamon GigaVUE 5.5.01.11

Directory Traversal Vulnerability in Gigamon GigaVUE 5.5.01.11

CVE-2020-12251 · LOW Severity

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N

An issue was discovered in Gigamon GigaVUE 5.5.01.11. The upload functionality allows an authenticated user to change the filename value (in the POST method) from the original filename to achieve directory traversal via a ../ sequence and, for example, obtain a complete directory listing of the machine.

Learn more about our User Device Pen Test.