An issue exists on Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) devices. Remote attackers can obtain potentially sensitive information via a /DbXmlInfo.xml request, as demonstrated by the Latitude/Longitude of the device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lutron quantum_bacnet_integration_firmware 3.2.243 |