A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The DOWNLOADS section in the web interface of the Control Center Server (CCS) contains a path traversal vulnerability that could allow an authenticated remote attacker to access and download arbitrary files from the server where CCS is installed.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2020-03-10T19:16:17

Updated: 2024-08-05T02:09:39.684Z

Reserved: 2019-11-26T00:00:00

Link: CVE-2019-19290

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-03-10T20:15:19.057

Modified: 2024-11-21T04:34:30.443

Link: CVE-2019-19290

cve-icon Redhat

No data.