CVE-2020-13377 Information

Description

The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated remote low-privileged attacker to conduct directory traversal attacks and obtain read and write access to sensitive files.

Reference

https://inf0seq.github.io/cve/2020/04/21/Path-Traversal-in-Enterprise-loadbalancer-VA-MAX-v8.3.8-and-earlier.html https://www.loadbalancer.org/products/virtual/enterprise-va-max/