In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.7 the filename parameter is vulnerable to unauthenticated path traversal attacks, enabling read access to arbitrary files on the server.
CPE | Name | Operator | Version |
---|---|---|---|
wha-gw-f2d2-0-as-_z2-eth.eip_firmware | le | 3.0.7 | |
wha-gw-f2d2-0-as-z2-eth_firmware | le | 3.0.7 |