CVE-2024-31947 Information

Description

StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows Directory Traversal by authenticated users. Using a crafted path parameter with the Online Help facility can expose sensitive system information.

Reference

https://stonefly.com https://stonefly.com/security-advisories/cve-2024-31947/