CVE-2020-15050

HIGH NUCLEI

Suprema BioStar 2 <2.8.2 - Path Traversal

Title source: llm

Description

An issue was discovered in the Video Extension in Suprema BioStar 2 before 2.8.2. Remote attackers can read arbitrary files from the server via Directory Traversal.

Exploits (1)

exploitdb WORKING POC

by SITE Team · textwebappsmultiple

https://www.exploit-db.com/exploits/48708

View Code ZIP pw:eip

Nuclei Templates (1)

Suprema BioStar <2.8.2 - Local File Inclusion

HIGHby gy741

References (2)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/158576/Bio-Star-2.8.2-Local-File-Inclusion.html

[Vendor Advisory] https://www.supremainc.com/en/support/biostar-2-pakage.asp

Scores

CVSS v3 7.5

EPSS 0.7904

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-22

Status published

Products (1)

supremainc/biostar_2 < 2.8.2

Published Jul 13, 2020

Tracked Since Feb 18, 2026