2 matches found
CVE-2021-45427
Emerson XWEB 300D EVO 3.0.7--3ee403 is affected by: unauthenticated arbitrary file deletion due to path traversal. An attacker can browse and delete files without any authentication due to incorrect access control and directory traversal...
Emerson XWEB 300D EVO 路径遍历漏洞
The Emerson XWEB 300D EVO is an energy efficient air conditioner from Emerson USA. A security vulnerability exists in Emerson XWEB 300D EVO 3.0.7--3ee403, which stems from incorrect access control and directory traversal. An attacker can exploit the vulnerability to browse and delete files withou...