We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)
Bugpilot (Bug tracking)

Ok

THREATINT CVE Home CVE Diag Help
PUBLISHED

CVE-2024-27575

Reserved:2024-02-26
Published:2024-04-04
Updated:2024-04-07

Description

INOTEC Sicherheitstechnik WebServer CPS220/64 3.3.19 allows a remote attacker to read arbitrary files via absolute path traversal, such as with the /cgi-bin/display?file=/etc/passwd URI.

References

https://www.inotec-licht.de/

https://gist.github.com/s4fv4n/098bd368bf054d008078e369108c2ebd

cve.org CVE-2024-27575

nvd.nist.gov CVE-2024-27575

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-27575