High severity7.5NVD Advisory· Published Sep 3, 2020· Updated Jun 17, 2026
CVE-2020-25068
CVE-2020-25068
Description
Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated attacker to read internal files on the server via an http:IP:PORT/../../path/file_to_disclose Directory Traversal URI. NOTE: The manufacturer indicated that the affected version does not exist. Furthermore, they indicated that they detected this problem in an internal audit more than 3 years ago and fixed it in 2017.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Setelsa/Conacwindescription
- Range: <=3.7.1.2
Patches
Vulnerability mechanics
References
2- www.youtube.com/watchnvdExploitThird Party Advisory
- setelsa-security.es/productos/control-de-acceso/nvdVendor Advisory
News mentions
0No linked articles in our index yet.