CVE-2019-13408
7.5HIGHA relative path traversal vulnerability found in Advan VD-1 firmware versions up to 230. It allows attackers to download arbitrary files via url cgibin/ExportSettings.cgi?Download=filepath, without an
Veröffentlicht: 8/29/2019Aktualisiert: 11/21/2024
Beschreibung
A relative path traversal vulnerability found in Advan VD-1 firmware versions up to 230. It allows attackers to download arbitrary files via url cgibin/ExportSettings.cgi?Download=filepath, without any authentication.
KI-AnalyseKI-gestützt
Betroffene Produkte
androvideovd_1_firmware
androvideovd_1
-
geovisiongv-vr360_firmware
geovisiongv-vr360
-
geovisiongv-vd8700_firmware
geovisiongv-vd8700
-
Referenzen
- http://surl.twcert.org.tw/2bvXqThird Party Advisory
- https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-mdExploitThird Party Advisory
- https://tvn.twcert.org.tw/taiwanvn/TVN-201906009Third Party Advisory
- http://surl.twcert.org.tw/2bvXqThird Party Advisory
- https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-mdExploitThird Party Advisory
- https://tvn.twcert.org.tw/taiwanvn/TVN-201906009Third Party Advisory