Hitachienergy: >> Fox515t Security Vulnerabilities
An Improper Input Validation issue was discovered in ABB FOX515T release 1.0. An improper input validation vulnerability has been identified, allowing a local attacker to provide a malicious parameter to the script that is not validated by the application, This could enable the attacker to retrieve any file on the server.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-06
The embedded web server on ABB Fox515T 1.0 devices is vulnerable to Local File Inclusion. It accepts a parameter that specifies a file for display or for use as a template. The filename is not validated; an attacker could retrieve any file.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-10-18