Directory Traversal Vulnerability in Symmetricom SyncServer Devices

Directory Traversal Vulnerability in Symmetricom SyncServer Devices

CVE-2020-9029 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to messagelog.php.

Learn more about our Cis Benchmark Audit For Server Software.