cbcvebase.
CVE-2018-20470
published 2019-06-17

CVE-2018-20470: An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerability exists in the web reports module…

PriorityP181high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
45.05%
98.6th percentile
An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerability exists in the web reports module. This allows an outside attacker to view contents of sensitive files.

Affected

1 ranges
VendorProductVersion rangeFixed in
sahiprosahi_pro<= 8.0.0

Detection & IOCsextracted from sources · hover to see the quote

url/_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1#selected
path/_s_/dyn/Log_highlight
  • Look for GET requests to the path /_s_/dyn/Log_highlight with a traversal sequence (e.g., ../../../../) in the 'href' query parameter, targeting sensitive files such as windows/win.ini.
  • A successful exploitation response (HTTP 200) will contain the strings 'bit app support', 'fonts', and 'extensions' in the response body — characteristic content of windows/win.ini.
  • The vulnerability resides in the web reports module of Tyto Sahi Pro; monitor HTTP traffic targeting the /_s_/dyn/ endpoint namespace for directory traversal patterns.
  • ·The traversal payload shown targets Windows hosts (win.ini); the vulnerability affects both Windows and potentially other OS deployments of Sahi Pro — adjust traversal paths accordingly for non-Windows targets.
  • ·Affected versions are Tyto Sahi Pro through 7.x.x and 8.0.0 only; detections should be scoped to these versions to reduce false positives.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.