CVE-2017-20212

Name of the Vulnerable Software and Affected Versions FLIR Thermal Camera F/FC/PT/D firmware version 8.0.0.64

Description The software contains an information disclosure issue that allows unauthenticated attackers to read arbitrary files through unverified input parameters. Attackers can exploit the /var/www/data/controllers/api/xml.php readFile() function to access local system files without authentication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.