ECOA BAS controller suffers from a path traversal content disclosure vulnerability. Using the GET parameter in File Manager, unauthenticated attackers can remotely disclose directory content on the affected device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ecoa ecs_router_controller-ecs_firmware - |
||
ecoa riskbuster_firmware - |
||
ecoa riskterminator - |