SINEC NMS is a network management system from Siemens for monitoring and managing industrial networks.A path traversal vulnerability exists in versions prior to SINEC NMS 1.0 SP2 Update 1 when exporting firmware containers. An attacker could exploit this vulnerability to create arbitrary files on the affected system.