Описание
Huawei HG255s-10 V100R001C163B025SP02 has a path traversal vulnerability due to insufficient validation of the received HTTP requests, a remote attacker may access the local files on the device without authentication.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:huawei:hg255s-10_firmware:v100r001c163b025sp02:*:*:*:*:*:*:*
cpe:2.3:h:huawei:hg255s-10:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.0967
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Huawei HG255s-10 V100R001C163B025SP02 has a path traversal vulnerability due to insufficient validation of the received HTTP requests, a remote attacker may access the local files on the device without authentication.
EPSS
Процентиль: 93%
0.0967
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-22