CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
EPSS
Percentile
62.0%
Security File Manager provided by CGENE Inc contains an issue in processing file names, which may result in a directory traversal (CWE-22) vulnerability.
A remote, unauthenticated attacker may create an arbitrary file or overwrite an existing file in a directory that the application has privileges to access.
Apply an update
Update to the latest version according to the information provided by the developer.