Heiko Feldhusen

**Name of the Vulnerable Software and Affected Versions** Artica Proxy versions 4.30.000000 SP206 through SP255 Artica Proxy VMware appliance versions 4.30.000000 through SP273 **Description** The issue is related to a Directory Traversal vulnerability. It can be exploited via the `filename` parameter to the "/cgi-bin/main.cgi" API endpoint. **Recommendations** For Artica Proxy versions 4.30.000000 SP206 through SP255, avoid using the `filename` parameter in the "/cgi-bin/main.cgi" endpoint until the issue is resolved. For Artica Proxy VMware appliance versions 4.30.000000 through SP273, restrict access to the "/cgi-bin/main.cgi" endpoint to minimize the risk of exploitation.