p910nd on Inteno IOPSYS 2.0 up to and including 4.2.0 allows remote malicious users to read, or append data to, arbitrary files via requests on TCP port 9100.
'''
Any authenticated user can modify the configuration for it in a way which allows them to read and append to any file as root This leads to information disclosure and remote code execution This vulnerability has been assigned the CVE ID: CVE-2018-10123
This PoC requires Python 36 and a module called websocket-client which you can install by ...