CVE-2016-8343

INDAS Web SCADA suffers a directory traversal vulnerability (CVE-2016-8343) in versions prior to 3, enabling remote attackers to read arbitrary files. The root cause is improper path handling that allows untrusted input to access restricted directories. Impact is consistent with a high-confidenti...