Описание
A firmware downgrade vulnerability exists in the OTA Update functionality of GL-Inet GL-AXT1800 4.7.0. A specially crafted .tar file can lead to a firmware downgrade. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
EPSS
Процентиль: 13%
0.00044
Низкий
8.3 High
CVSS3
Дефекты
CWE-295
Связанные уязвимости
CVSS3: 8.3
github
3 месяца назад
A firmware downgrade vulnerability exists in the OTA Update functionality of GL-Inet GL-AXT1800 4.7.0. A specially crafted .tar file can lead to a firmware downgrade. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
EPSS
Процентиль: 13%
0.00044
Низкий
8.3 High
CVSS3
Дефекты
CWE-295