CVE-2017-20184

Name of the Vulnerable Software and Affected Versions Carlo Gavazzi Powersoft versions up to 2.1.1.1

Description The issue allows an unauthenticated, remote attacker to download any file from the affected device due to improper limitation of a pathname to a restricted directory, also known as 'Path Traversal'. This enables access to sensitive information without proper authorization.

Recommendations For versions up to 2.1.1.1, update to a version later than 2.1.1.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.