CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Stvs: >> Provision >> 5.6 Security Vulnerabilities

CVE-2021-47724

STVS ProVision 5.9.10 contains a path traversal vulnerability that allows authenticated attackers to access arbitrary files by manipulating the files parameter in the archive download functionality. Attackers can send GET requests to /archive/download with directory traversal sequences to read sensitive system files like /etc/passwd.

CVSS Score

6.5

EPSS Score

0.003

Published

2025-12-09

Page 1

Vulnerabilities

Vulnerable Software

Stvs: >> Provision >> 5.6 Security Vulnerabilities

Products

Pricing

Contact Us