PT-2017-14979 · Brightsign · Brightsign Digital Signage

Singularitysec

Published

2017-12-18

Updated

2018-01-04

CVE-2017-17739

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions BrightSign Digital Signage (4k242) versions 6.2.63 and below

Description The issue allows directory traversal via the "/storage.html" API endpoint, specifically through the rp parameter. This enables an attacker to read or write to files.

Recommendations For versions 6.2.63 and below, consider restricting access to the "/storage.html" API endpoint to minimize the risk of exploitation. As a temporary workaround, avoid using the rp parameter in the affected API endpoint until the issue is resolved.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2017-17739

Affected Products

Brightsign Digital Signage

PT-2017-14979 · Brightsign · Brightsign Digital Signage

CVE-2017-17739

Weakness Enumeration

Related Identifiers

Affected Products

References · 4