Liftoffsoftware: >> Gateone Security Vulnerabilities
GateOne 1.1 allows arbitrary file download without authentication via /downloads/.. directory traversal because os.path.join is misused.
CVSS Score
7.5
EPSS Score
0.824
Published
2020-12-27
GateOne allows remote attackers to execute arbitrary commands via shell metacharacters in the port field when attempting an SSH connection.
CVSS Score
9.8
EPSS Score
0.064
Published
2020-12-14