logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-41291

Description

ECOA BAS controller suffers from a path traversal content disclosure vulnerability. Using the GET parameter in File Manager, unauthenticated attackers can remotely disclose directory content on the affected device.


Affected Software


CPE Name Name Version
ecoa:ecs_router_controller-ecs_firmware ecoa ecs router controller-ecs firmware -
ecoa:riskbuster_firmware ecoa riskbuster firmware -
ecoa:riskterminator ecoa riskterminator -

Related