CVE-2011-5127

Directory traversal vulnerability in Blue Coat Reporter 9.x before 9.2.4.13, 9.2.5.x before 9.2.5.1, and 9.3 before 9.3.1.2 on Windows allows remote attackers to read arbitrary files, and consequently execute arbitrary code, via an unspecified HTTP request.

Published: Aug 26, 2012
Updated: Apr 13, 2023
CVE: CVE-2011-5127
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
bluecoat / reporter	9.2.4.1	9.2.4.1.x
bluecoat / reporter	9.2.4.12	9.2.4.12.x
bluecoat / reporter	9.2.5	9.2.5.x
bluecoat / reporter	9.3.1.1	9.3.1.1.x

https://kb.bluecoat.com/index?page=content&id=SA60

Vulnerability Database

289,871

CVE-2011-5127