CNNVD-202512-1821 Information

CNNVD ID

CNNVD-202512-1821

Related CVE

CVE-2020-36883

• CNNVD Published: 2025-12-10

Description (Chinese)

SpinetiX Fusion Digital Signage是瑞士SpinetiX公司的一个数字标牌软件。 SpinetiX Fusion Digital Signage 3.4.8及之前版本存在路径遍历漏洞，该漏洞源于未验证输入参数，可能导致路径遍历攻击。

Description (English)

SpinetiX Fusion Digital Signage is a digital branding software for SpinetiX Switzerland. SpinetiX Fusion Digital Signage 3.4.8 and previous versions have a loophole in the path, which originates from unverified input parameters and may lead to a path attack.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

SpinetiX

Published

2025-12-10

Last Modified

2026-02-24

References

https://github.com/Mbed-TLS/mbedtls https://www.exploit-db.com/exploits/48844 https://www.spinetix.com https://www.vulncheck.com/advisories/spinetix-fusion-digital-signage-authenticated-path-traversal-via-file-operations https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5594.php