Local file inclusion in Pyrescom Termod4 time management devices before 10.04k allows authenticated remote attackers to traverse directories and read sensitive files via the Maintenance > Logs menu and manipulating the file-path in the URL.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-01-22T13:11:37
Updated: 2024-08-04T14:58:14.475Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-23161
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-01-26T18:15:42.397
Modified: 2024-11-21T05:13:36.700
Link: CVE-2020-23161
Redhat
No data.