RSS   Vulnerabilities for 'Conacwin'   RSS

2020-09-03
 
CVE-2020-25068

CWE-22
 

 
** DISPUTED ** Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Traversal URI. NOTE: The manufacturer indicated that the affected version does not exist. CVE-2020-25068 is been disputed until the researcher and the manufacturer identify the correct affected version.

 


Copyright 2024, cxsecurity.com

 

Back to Top