CVE-2020-17385

Name of the Vulnerable Software and Affected Versions Cellopoint Cellos version 4.1.10 Build 20190922

Description The issue allows unauthorized users to launch a Path Traversal attack due to improper validation of URL input, enabling access to arbitrary files on the system.

Recommendations For version 4.1.10 Build 20190922, consider implementing proper URL input validation to prevent Path Traversal attacks. As a temporary workaround, restrict access to sensitive files and directories to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.