Описание
UNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected product an external storage containing malicious symbolic link files, a logged-in administrative user may obtain and/or destroy internal files.
EPSS
Процентиль: 41%
0.0019
Низкий
6.2 Medium
CVSS3
Дефекты
CWE-61
Связанные уязвимости
CVSS3: 6.2
github
10 месяцев назад
UNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected product an external storage containing malicious symbolic link files, a logged-in administrative user may obtain and/or destroy internal files.
EPSS
Процентиль: 41%
0.0019
Низкий
6.2 Medium
CVSS3
Дефекты
CWE-61