Primary

Context

FNT Command Directory Traversal Vulnerability

Vulnerability

A directory traversal vulnerability has been identified in FNT Command version 13.4.0. This issue allows authenticated attackers to upload files to arbitrary locations on the server by exploiting inadequate validation of user-supplied file paths during the file upload process. Depending on the server's deployment and configuration, this vulnerability could lead to a full system compromise, such as by uploading executable files or overwriting critical security resources.

Impact

Exploitation of this vulnerability could allow an authenticated user to upload files outside the designated upload directory, potentially accessing sensitive server files or executing malicious code, depending on the uploaded file type.

Remediation

Users are advised to update to FNT Command version 13.4.1 or later, where this vulnerability has been fixed.

Added: Dec 15, 2025, 4:24 PM

Updated: Dec 15, 2025, 6:37 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FNT Command Directory Traversal Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating