{"id":"CVE-2020-19360","details":"Local file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure.","modified":"2026-04-11T20:34:21.096164Z","published":"2021-01-20T01:15:13.207Z","references":[{"type":"ADVISORY","url":"https://emreovunc.com/blog/en/FHEM-v6.0-LFI-Vulnerability-01.png"},{"type":"EVIDENCE","url":"https://github.com/EmreOvunc/FHEM-6.0-Local-File-Inclusion-LFI-Vulnerability"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/EmreOvunc/FHEM-6.0-Local-File-Inclusion-LFI-Vulnerability","events":[{"introduced":"0"},{"last_affected":"fe8bd5e69cf8e8aee5cdd665644e2c1b4b113185"}],"database_specific":{"cpe":"cpe:2.3:a:fhem:fhem:6.0:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"6.0"}]}}],"versions":["6.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-19360.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}