A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. A directory traversal vulnerability could allow a remote attacker with network access to the integrated web server (80/tcp and 443/tcp) to obtain information on the structure of the file system of the affected devices.
CPE | Name | Operator | Version |
---|---|---|---|
apogee_pxc_firmware | lt | 3.5 | |
apogee_pxc_modular_firmware | lt | 3.5 | |
talon_tc_compact_firmware | lt | 3.5 | |
talon_tc_modular_firmware | lt | 3.5 |