Arbitrary File Reading Vulnerability in JUMP AMS 3.6.0.04.009-2487 SOAP API

Arbitrary File Reading Vulnerability in JUMP AMS 3.6.0.04.009-2487 SOAP API

CVE-2021-32018 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An issue was discovered in JUMP AMS 3.6.0.04.009-2487. The JUMP SOAP API was vulnerable to arbitrary file reading due to an improper limitation of file loading on the server filesystem, aka directory traversal.

Learn more about our Cis Benchmark Audit For Server Software.