PT-2017-10088 · Fidelix · Fidelix Fx-20 Series Controllers

Semen Rozhkov

Published

2017-02-13

Updated

2017-02-23

CVE-2016-9364

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Fidelix FX-20 series controllers versions prior to 11.50.19

Description An issue allows arbitrary file reading via path traversal, enabling an attacker to access arbitrary files and directories on the server.

Recommendations For versions prior to 11.50.19, update to version 11.50.19 or later to resolve the issue.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2016-9364

Affected Products

Fidelix Fx-20 Series Controllers

PT-2017-10088 · Fidelix · Fidelix Fx-20 Series Controllers

CVE-2016-9364

Weakness Enumeration

Related Identifiers

Affected Products

References · 4