CVE-2023-31059

Name of the Vulnerable Software and Affected Versions Repetier Server versions prior to 1.4.11

Description The issue allows directory traversal for reading files that contain credentials. This can be demonstrated by accessing the connectionLost.php file. It is estimated that about 1,766 devices may be potentially affected.

Recommendations For Repetier Server versions prior to 1.4.11, update to version 1.4.11 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.