Primary

Context

APC Network Management Card 4 Path Traversal Vulnerability

Vulnerability

A path traversal vulnerability has been identified in APC Network Management Card 4. This vulnerability allows unauthenticated attackers to access sensitive system files by manipulating URL parameters. Exploiting directory traversal techniques, attackers can read critical system files such as /etc/passwd by using encoded path traversal characters in HTTP requests.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive system files, potentially leading to further attacks or information disclosure.

Reproduction

The vulnerability can be reproduced by sending an HTTP request to the device with encoded path traversal characters in the URL. This request can be made using a tool like curl. The exploited URL should include the traversal characters needed to navigate to the /etc/passwd file.

Added: Dec 11, 2025, 10:26 PM

Updated: Dec 11, 2025, 10:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

1.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

1.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

APC Network Management Card 4 Path Traversal Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating