exploitDog

GHSA-crh4-w845-25fv

Опубликовано: 31 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains an issue in the component /cgi-bin/DownloadFlash which allows attackers to steal all data such as source code and system files via a crafted GET request.

Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains an issue in the component /cgi-bin/DownloadFlash which allows attackers to steal all data such as source code and system files via a crafted GET request.

Ссылки

EPSS

Процентиль: 58%

0.00359

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-552

Связанные уязвимости

CVE-2022-36552

CVSS3: 7.5

nvd

больше 3 лет назад

Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains an issue in the component /cgi-bin/DownloadFlash which allows attackers to steal all data such as source code and system files via a crafted GET request.

EPSS

Процентиль: 58%

0.00359

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-552