Description
Directory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow attackers to read arbitrary files.
References (1)
Core 1
Core References
Product, Release Notes
https://www.mcl-mobilityplatform.com/downloads.php
Scores
CVSS v3
8.3
EPSS
0.0055
EPSS Percentile
41.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (2)
espeak-ng/espeak_ng
< 1.52.0
mcl-collection/mcl-net_firmware
< 4.6.0.30210
Published
Oct 11, 2023
Tracked Since
Feb 18, 2026