Primary

Context

EfficientIP SOLIDserver IPAM Directory Traversal Vulnerability

Vulnerability

A directory traversal vulnerability exists in EfficientIP's SOLIDserver IPAM version 8.2.3. This vulnerability allows authenticated users with administrator privileges to access and list directories beyond their authorized access. By manipulating the 'directory' parameter in the '/mod/ajax.php?action=sections/list/list' endpoint, users can view files outside the 'LOCAL:///' folder.

Impact

Exploitation of this vulnerability could lead to unauthorized directory listing, allowing users to access files and directories they should not have permission to.

Remediation

The vulnerability has been fixed in SOLIDserver IPAM version 8.4.1.

Added: Dec 2, 2025, 1:18 PM

Updated: Dec 2, 2025, 5:48 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

EfficientIP SOLIDserver IPAM Directory Traversal Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating