REDDOXX Appliance RdxEngine-API File Disclosure
Posted by deepcore on July 25, 2017 – 11:30 pm
RedTeam Pentesting discovered an arbitrary file disclosure vulnerability in the REDDOXX appliance software, which allows unauthenticated attackers to list directory contents and download arbitrary files from the affected system with root permissions. Affected versions include build 2032 and 2.0.625.
Post a reply
You must be logged in to post a comment.