Description
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to download arbitrary files under a user controlled path and does not correctly check if the relative path is still within the intended target directory.
Affected products
- Siemens / SINEC NMSAll versions < V1.0 SP2 Update 1 – All versions < V1.0 SP2 Update 1