CVE-2020-11596

Name of the Vulnerable Software and Affected Versions CIPPlanner CIPAce version 9.1 Build 2019092801

Description A Directory Traversal issue allows an unauthenticated attacker to make HTTP GET requests to a certain URL and obtain information about files and directories on the server.

Recommendations For CIPPlanner CIPAce version 9.1 Build 2019092801, consider restricting access to the vulnerable URL to minimize the risk of exploitation. As a temporary workaround, avoid using the affected URL until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.