VYPR
Unrated severityNVD Advisory· Published Sep 30, 2021· Updated Sep 16, 2024

ECOA BAS controller - Path Traversal-3

CVE-2021-41293

Description

ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.