CVE-2015-2860

Avigilon Control Center < 5.4.2.21 - Path Traversal via Help URL

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before 4.12.0.54 and 5 before 5.4.2.22 allows remote attackers to read arbitrary files via a crafted help/ URL.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/75115
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/555984

Scores

EPSS 0.0270
EPSS Percentile 84.1%

Details

CWE
CWE-22
Status published
Products (1)
avigilon/avigilon_control_center < 5.4.2.21
Published Jun 23, 2015
Tracked Since Feb 18, 2026