Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL without authentication. This enables an remote attacker to read all files on the filesystem of the FDS101 device.
References
Link | Resource |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-038/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-09-21T06:18:21.444Z
Updated: 2023-09-21T06:18:21.444Z
Reserved: 2023-08-04T09:57:19.862Z
Link: CVE-2023-4152
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-21T07:15:14.300
Modified: 2023-09-23T03:41:36.287
Link: CVE-2023-4152
JSON object: View
Redhat Information
No data.
CWE