Vulnerability in N/a
CVE-2021-3019
ffay lanproxy 0.1 allows Directory Traversal to read /../conf/config.properties to obtain credentials for a connection to the intranet.
EPSS: 0.923 (99.7th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
Public proof-of-concept exploits
References
- github.com/maybe-why-not/lanproxy/issues/1 (x_refsource_MISC)
- github.com/ffay/lanproxy/commits/master (x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-3019?
- CVE-2021-3019 is a vulnerability in N/a. Published 2021-01-05.
- Is CVE-2021-3019 known to be exploited?
- 46 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.