Vulnerabilities / Path traversal

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
↓

Severity	high
Correlatable	sast
CWE Name	Path traversal
CWE ID	CWE-22
CWE Score	7.5
Compliance	OWASP TOP10 -> A1 PCI-DSS -> 6.5.8 ISO 27001 -> A.5.33, A.5.34, A.8.3, A.8.4, A.8.12, A.8.25 HIPAA -> 164.306(a), 164.312(a)(1), 164.312(d)
CVSS
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	High
Integrity Impact	None
Availability Impact	None

Path traversal