Path Traversal Vulnerability in Dell WMS 3.6.1 and Below Device API

Path Traversal Vulnerability in Dell WMS 3.6.1 and Below Device API

CVE-2022-29097 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. A remote attacker could potentially exploit this vulnerability, to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.

Learn more about our Web App Pen Testing.