Main
Vulnerability Database
Exploits
ID:7898 - Exploit for Path traversal in BACnet Field Panels - CVE-2017-9947
ID:7898 - Exploit for Path traversal in BACnet Field Panels - CVE-2017-9947
Published: May 26, 2022
Vulnerability identifier: #VU8820
Vulnerability risk: Low
CVE-ID: CVE-2017-9947
CWE-ID: CWE-22
Exploitation vector: Remote access
Vulnerable software:
BACnet Field Panels
BACnet Field Panels
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The weakness exists due to path traversal. A remote attacker with network access to the integrated web server (Ports 80/TCP and 443/TCP) can obtain information on the structure of the file system of the affected devices.
The weakness exists due to path traversal. A remote attacker with network access to the integrated web server (Ports 80/TCP and 443/TCP) can obtain information on the structure of the file system of the affected devices.
Remediation
Update to version 3.5.