E3 Site Supervisor Control Unauthenticated File Upload Vulnerability Allowing Arbitrary File Access

Vulnerability

A vulnerability exists in E3 Site Supervisor Control firmware versions prior to 2.31F01, allowing unauthenticated attackers to upload specially crafted floor plan files. This upload capability can be exploited to access any file from the E3 file system.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files within the E3 file system.

Added: Sep 2, 2025, 12:39 PM

Updated: Sep 2, 2025, 4:10 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

0.0

relevance

0.4

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.4

remediation

0.0

relevance

0.4

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

E3 Site Supervisor Control Unauthenticated File Upload Vulnerability Allowing Arbitrary File Access

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating