An issue was discovered in INNEO Startup TOOLS 2017 M021 12.0.66.3784 through 2018 M040 13.0.70.3804. The sut_srv.exe web application (served on TCP port 85) includes user input into a filesystem access without any further validation. This might allow an unauthenticated attacker to read files on the server via Directory Traversal, or possibly have unspecified other impact.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-07-23T19:53:08
Updated: 2024-08-04T13:15:20.806Z
Reserved: 2020-07-01T00:00:00
Link: CVE-2020-15492
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-07-23T20:15:11.757
Modified: 2020-07-28T18:52:37.457
Link: CVE-2020-15492
Redhat
No data.