CVE-2024-12014

Path Traversal vulnerability in the eSignaViewer component in eSigna product versions 1.0 to 1.5 on all platforms allow an unauthenticated attacker to access arbitrary files in the document system via manipulation of file paths and object identifiers.

CVSS

No CVSS.

References

Link	Resource
https://edgewatch.com/vulnerability-advisories/path-traversal-and-idor-vulnerabilities-in-esignaviewer-allow-unauthorized-file-access/

Configurations

No configuration.

History

20 May 2025, 15:16

Type	Values Removed	Values Added
CWE		CWE-20

15 May 2025, 12:15

Type	Values Removed	Values Added
CWE	CWE-639 CWE-20
Summary	Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer component in eSigna product versions 1.0 to 1.5 on all platforms allow an unauthenticated attacker to access arbitrary files in the document system via manipulation of file paths and object identifiers.	Path Traversal vulnerability in the eSignaViewer component in eSigna product versions 1.0 to 1.5 on all platforms allow an unauthenticated attacker to access arbitrary files in the document system via manipulation of file paths and object identifiers.

20 Dec 2024, 16:15

Type	Values Removed	Values Added
CWE		CWE-639

20 Dec 2024, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-20 13:15

Updated : 2025-05-20 15:16

NVD link : CVE-2024-12014

Mitre link : CVE-2024-12014

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

JSON object

Attach tags to CVE-2024-12014

Attach tags to `CVE-2024-12014`