Filtered by vendor Qsc Subscriptions
Filtered by product Q-sys Core Manager Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-24990 1 Qsc 1 Q-sys Core Manager 2024-11-21 7.5 High
An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files via a TFTP GET request, as demonstrated by reading /etc/passwd or /proc/version.