Vulnerability Details CVE-2014-9373
Directory traversal vulnerability in the CollectorConfInfoServlet servlet in ManageEngine NetFlow Analyzer allows remote attackers to execute arbitrary code via a .. (dot dot) in the filename.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.09
EPSS Ranking 92.2%
CVSS Severity
CVSS v2 Score 10.0
References
Products affected by CVE-2014-9373
-
cpe:2.3:a:manageengine:netflow_analyzer:-