The WebApp v04.68 in the supervisor on SAET Impianti Speciali TEBE Small 05.01 build 1137 devices allows remote attackers to execute or include local .php files, as demonstrated by menu=php://filter/convert.base64-encode/resource=index.php to read index.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-05-31T21:22:41
Updated: 2024-08-04T21:38:46.400Z
Reserved: 2019-02-24T00:00:00
Link: CVE-2019-9106
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-05-31T22:29:01.410
Modified: 2024-11-21T04:50:59.690
Link: CVE-2019-9106
Redhat
No data.