Vulnerabilities > TP Link > Omada Controller

DATE CVE VULNERABILITY TITLE RISK
2020-05-04 CVE-2020-12475 Path Traversal vulnerability in Tp-Link Omada Controller 3.2.6
TP-Link Omada Controller Software 3.2.6 allows Directory Traversal for reading arbitrary files via com.tp_link.eap.web.portal.PortalController.getAdvertiseFile in /opt/tplink/EAPController/lib/eap-web-3.2.6.jar.
local
low complexity
tp-link CWE-22
5.5