Medium severity5.5NVD Advisory· Published Jul 23, 2018· Updated Jun 17, 2026
CVE-2018-14573
CVE-2018-14573
Description
A Local File Inclusion (LFI) vulnerability exists in the Web Interface API of TightRope Media Carousel Digital Signage before 7.3.5. The RenderingFetch API allows for the downloading of arbitrary files through the use of directory traversal sequences, aka CSL-1683.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <7.3.5
Patches
Vulnerability mechanics
References
1- release-notes.trms.com/txt/448nvdNot ApplicableThird Party Advisory
News mentions
0No linked articles in our index yet.