CVE-2017-18636

CDG through 2017-01-01 allows downloadDocument.jsp?command=download&pathAndName= directory traversal.
Source: NIST
CVE-2017-18636