Orielorieloriel

**Name of the Vulnerable Software and Affected Versions** Onkyo TX-NR585 version 1000-0000-000-0008-0000 **Description** A Local File Inclusion (LFI) issue allows remote unauthenticated users on the network to read sensitive files via directory traversal, such as reading /etc/shadow. This is achieved by using `%2e%2e%2f` directory traversal. **Recommendations** For Onkyo TX-NR585 version 1000-0000-000-0008-0000, as a temporary workaround, consider restricting access to sensitive files until a patch is available. Avoid using directory traversal characters, such as `%2e%2e%2f`, in file requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.