Home / os / winmobile

FLIR Systems FLIR AX8 Thermal Camera 1.32.16 Arbitrary File Disclosure

Posted on 15 October 2018

The FLIR AX8 thermal sensor camera version 1.32.16 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed via the 'file' parameter in download.php is not properly verified before being used to download config files. This can be exploited to disclose the contents of arbitrary files via absolute path.

 

TOP

Malware :

Exploits :