Qsc: >> Q-Sys Core Manager Security Vulnerabilities
An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files via a TFTP GET request, as demonstrated by reading /etc/passwd or /proc/version.
CVSS Score
7.5
EPSS Score
0.03
Published
2020-10-28