CVE-2017-2686
Siemens RUGGEDCOM ROX I (all versions) contains CVE-2017-2686: an authenticated user could read arbitrary files via the web interface on port 10000/TCP, exposing sensitive information. Root cause is improper authorization on the web interface (CWE-285); impact is partial confidentiality (I:H in C...