Описание
Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains an issue in the component /cgi-bin/DownloadFlash which allows attackers to steal all data such as source code and system files via a crafted GET request.
Ссылки
- Permissions RequiredProductURL Repurposed
- Not Applicable
- Permissions RequiredThird Party Advisory
- Permissions RequiredProductURL Repurposed
- Not Applicable
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 02.03.01.114 (включая)
Одновременно
cpe:2.3:o:tendacn:ac6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tendacn:ac6:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00359
Низкий
7.5 High
CVSS3
Дефекты
CWE-552
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Tenda AC6(AC1200) v5.0 Firmware v02.03.01.114 and below contains an issue in the component /cgi-bin/DownloadFlash which allows attackers to steal all data such as source code and system files via a crafted GET request.
EPSS
Процентиль: 58%
0.00359
Низкий
7.5 High
CVSS3
Дефекты
CWE-552