cbcvebase.
CVE-2006-1951
published 2006-04-24

CVE-2006-1951: Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request…

PriorityP432medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
4.02%
89.3th percentile
Directory traversal vulnerability in SolarWinds TFTP Server 8.1 and earlier allows remote attackers to download arbitrary files via a crafted GET request including "....//" sequences, which are collapsed into "../" sequences by filtering.

Affected

3 ranges
VendorProductVersion rangeFixed in
solarwindstftp_server
solarwindstftp_server
solarwindstftp_server
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.