HCL AppScan Traffic Recorder Directory Traversal Vulnerability Allowing Application Disruption or Takeover

Vulnerability

A directory traversal vulnerability has been identified in HCL AppScan Traffic Recorder. The issue arises because the application does not properly sanitize special characters in filenames, which could allow a file to be resolved to a location outside of the intended directory restrictions. This vulnerability could be exploited to disrupt the application or take control of the computer running it.

Impact

Exploitation of this vulnerability could lead to a complete disruption of the application or a takeover of the computer on which the application is installed.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL AppScan Traffic Recorder Directory Traversal Vulnerability Allowing Application Disruption or Takeover

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating