PT-2016-5110 · Aspect Matrix+1 · Aspect-Matrix Building Automation Front-End Solutions+1
Maxim Rupp
·
Publicado
2016-10-05
·
Atualizado
2016-10-05
·
CVE-2016-2307
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application versions prior to 3.0.0
Aspect-Matrix Building Automation Front-End Solutions application versions prior to 3.0.0
Description
The issue allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by the configuration file.
Recommendations
For American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application versions prior to 3.0.0, update to version 3.0.0 or later.
For Aspect-Matrix Building Automation Front-End Solutions application versions prior to 3.0.0, update to version 3.0.0 or later.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions
Aspect-Matrix Building Automation Front-End Solutions