PT-2016-5110 · Aspect Matrix+1 · Aspect-Matrix Building Automation Front-End Solutions+1
Maxim Rupp
·
Published
2016-10-05
·
Updated
2016-10-05
·
CVE-2016-2307
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application versions prior to 3.0.0
Aspect-Matrix Building Automation Front-End Solutions application versions prior to 3.0.0
Description
The issue allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by the configuration file.
Recommendations
For American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application versions prior to 3.0.0, update to version 3.0.0 or later.
For Aspect-Matrix Building Automation Front-End Solutions application versions prior to 3.0.0, update to version 3.0.0 or later.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions
Aspect-Matrix Building Automation Front-End Solutions