Name of the Vulnerable Software and Affected Versions 1С-Битрикс (affected versions not specified)

Description The issue is related to the bitrixsetup.php component of the 1С-Битрикс web project management system, which lacks protection of service data. Exploitation of this issue may allow an attacker to gain unauthorized read access to files in the operating system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.