CVE-2013-4097

Severity CVSS v4.0:
Pending analysis
Type:
CWE-22 Path Traversal
Publication date:
28/06/2013
Last modified:
11/04/2025

Description

ServerAdmin/TestDRConnection.jsp in DS3 Authentication Server allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in a -REG-E-OPEN error message.

Vulnerable products and versions

CPE From Up to
cpe:2.3:h:ds3:authentication_server:-:*:*:*:*:*:*:*