An issue was discovered in FAUST iServer before 9.0.019.019.7. For each URL request, it accesses the corresponding .fau file on the operating system without preventing %2e%2e%5c directory traversal.
CPE | Name | Operator | Version |
---|---|---|---|
faust_iserver | eq | >= 9.0.17.17.1-3 AND < 9.0.19.19.7 |