Name of the Vulnerable Software and Affected Versions ЕКRASMS-SP (affected versions not specified)

Description The issue is related to the implementation of the interaction protocol between the "АРМ Релейщика" software and the "Сервер связи" software of the ЕКRASMS-SP complex. It is caused by the lack of filtering of the path transmitted by the client. This could allow a remote attacker to read arbitrary system files.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.