Описание
Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow file overwrite via TFTP because a remote filename with a space character allows an attacker to control the local filename.
EPSS
Процентиль: 6%
0.00024
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-424
Связанные уязвимости
CVSS3: 6.4
github
8 месяцев назад
Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow file overwrite via TFTP because a remote filename with a space character allows an attacker to control the local filename.
EPSS
Процентиль: 6%
0.00024
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-424