Flir · Flir Ax8 · CVE-2023-51127
**Name of the Vulnerable Software and Affected Versions**
FLIR AX8 thermal sensor cameras up to and including 1.46.16
**Description**
The issue is related to Directory Traversal due to improper access restriction, allowing an unauthenticated, remote attacker to obtain arbitrary sensitive file contents by uploading a specially crafted symbolic link file.
**Recommendations**
For FLIR AX8 thermal sensor cameras up to and including 1.46.16, consider restricting access to the upload feature to prevent exploitation until a patch is available.
As a temporary workaround, avoid using the upload feature for symbolic link files until the issue is resolved.