Primary

Context

Shenzhen Ruiming Technology Streamax Crocus Path Traversal Vulnerability in File Download Function

Vulnerability

A path traversal vulnerability has been identified in Shenzhen Ruiming Technology's Streamax Crocus version 1.3.40. The issue arises in the 'Download' function of the 'DeviceFileReport.do' file, where manipulation of the 'FilePath' parameter allows for unauthorized access to files outside the intended directory. This vulnerability can be exploited remotely, and an exploit is publicly available.

Impact

Exploitation of this vulnerability allows for arbitrary file download, potentially leading to unauthorized access to sensitive files such as configuration or database files.

Reproduction

To reproduce this vulnerability, send a POST request to 'DeviceFileReport.do' with the 'Action' parameter set to 'Download' and the 'FilePath' parameter manipulated to traverse directories (e.g., using '../') to access files outside the intended directory. Include a forged 'Saffron.U' cookie to bypass authentication.

Added: Oct 17, 2025, 9:27 PM

Updated: Oct 17, 2025, 9:27 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.5

exploitability

8.7

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.5

exploitability

8.7

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Shenzhen Ruiming Technology Streamax Crocus Path Traversal Vulnerability in File Download Function

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating