Unrated severityNVD Advisory· Published Jan 8, 2021· Updated Aug 4, 2024
CVE-2020-5804
CVE-2020-5804
Description
Marvell QConvergeConsole GUI <= 5.5.0.74 is affected by a path traversal vulnerability. The deleteEventLogFile method of the GWTTestServiceImpl class lacks proper validation of a user-supplied path prior to using it in file deletion operations. An authenticated, remote attacker can leverage this vulnerability to delete arbitrary remote files as SYSTEM or root.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=5.5.0.74
Patches
Vulnerability mechanics
References
1- www.tenable.com/security/research/tra-2021-01mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.