A10 Networks Advanced Core Operating System (ACOS) 4.1.4 GR1-P14
Approved changes feed: RSS · Atom
cpe:2.3:o:a10networks:advanced_core_operating_system:4.1.4:gr1-p14:*:*:*:*:*:*
part: o version: 4.1.4 update: gr1-p14
| Vendor | A10Networks (1449ad46-1d6c-5093-9b7e-e66341bf4106) |
|---|---|
| Product | Advanced Core Operating System (eab22fa2-0bf2-5c93-936a-433ba0b98f3f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-42130 |
vulnerable | 2026-06-03 14:52:53.134854 |
A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability
HIGH (8.3)
A10 Thunder ADC FileMgmtExport Directory Traversal Arbitrary File Read and Deletion Vulnerability. This vulnerability allows remote attackers to read and delete arbitrary files on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability.
The specific flaw exists within the FileMgmtExport class. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to read and delete files in the context of the service account.
. Was ZDI-CAN-17905.
Published: 2024-05-03T02:13:34.969Z
Updated: 2024-09-18T18:30:16.120Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.