Full title: CommScope Ruckus IoT Controller 1.7.1.0 Web Application Directory Traversal Vulnerability 
Category: web applications
Platform: multiple
A Python script (web.py) for a Dockerized webservice contains a directory traversal vulnerability, which can be leveraged by an authenticated attacker to view the contents of directories on the IoT Controller.

# 0day.today @ http://0day.today/