CVE-2022-37060

Name of the Vulnerable Software and Affected Versions FLIR AX8 thermal sensor cameras version up to and including 1.46.16

Description The issue is related to Directory Traversal due to improper access restriction. An unauthenticated, remote attacker can exploit this by sending a URI that contains directory traversal characters to disclose the contents of files located outside of the server's restricted path.

Recommendations For FLIR AX8 thermal sensor cameras version up to and including 1.46.16, update to a version later than 1.46.16 to resolve the issue. As a temporary workaround, consider restricting access to the server to minimize the risk of exploitation. Avoid using URIs that contain directory traversal characters in the affected API endpoint until the issue is resolved.