VYPR
High severity7.5NVD Advisory· Published Aug 4, 2017· Updated Jun 17, 2026

CVE-2017-10949

CVE-2017-10949

Description

Directory Traversal in Dell Storage Manager 2016 R2.1 causes Information Disclosure when the doGet method of the EmWebsiteServlet class doesn't properly validate user provided path before using it in file operations. Was ZDI-CAN-4459.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:dell:storage_manager_2016:r2.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:dell:storage_manager_2016:r2.1:*:*:*:*:*:*:*
    • (no CPE)range: 2016 R2.1
  • Zero Day Initiative/Dell Storage Managerv5
    Range: 2016 R2.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.