03 Sep 2020
Vulnérabilité CVE-2020-25068 CVE Vulnerability
Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Traversal URI. NOTE: The manufacturer indicated that the affected version does not exist. Furthermore, they indicated that they detected this problem in an internal audit more than 3 years ago and fixed it in 2017. (CVSS:5.0) (Last Update:2020-11-12)
Vulnerability Details : Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Traversal URI. NOTE: The manufacturer indicated that the affected version does not exist. Furthermore, they indicated that they detected this problem in an internal audit more than 3 years ago and fixed it in 2017. Publish Date : 2020-09-03 Last Update Date : 2020-11-12 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2020-25068
- Number Of Affected Versions By Product
- References For CVE-2020-25068
| |||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2020-25068There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |