This security bulletin contains one low risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a local attacker to read arbitrary files on the underlying operating system (OS) of an affected device.
The vulnerability exists due to the improper input validation of arguments used with a vulnerable CLI command. A local authenticated attacker can use a specially crafted argument during the execution of an affected command and read arbitrary files on the underlying OS.Mitigation
Install updates from vendor's website.Vulnerable software versions
Enterprise NFV Infrastructure Software: before 3.11.1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?