Описание
An issue was discovered on Topcon Positioning Net-G5 GNSS Receiver devices with firmware 5.2.2. The web interface of the product has a local file inclusion vulnerability. An attacker with administrative privileges can craft a special URL to read arbitrary files from the device's files system.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:topcon:net-g5_firmware:5.2.2:*:*:*:*:*:*:*
cpe:2.3:h:topcon:net-g5:-:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00517
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 4.9
github
больше 3 лет назад
An issue was discovered on Topcon Positioning Net-G5 GNSS Receiver devices with firmware 5.2.2. The web interface of the product has a local file inclusion vulnerability. An attacker with administrative privileges can craft a special URL to read arbitrary files from the device's files system.
EPSS
Процентиль: 66%
0.00517
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-22