Cisco Small Business SA520 and SA540 devices with firmware 2.1.71 and 2.2.0.7 allow ../ directory traversal in scgi-bin/platform.cgi via the thispage parameter, for reading arbitrary files.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-10-23T08:00:00
Updated: 2024-08-05T20:04:50.272Z
Reserved: 2017-10-23T00:00:00
Link: CVE-2017-15805
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2017-10-23T08:29:00.773
Modified: 2017-11-08T16:45:11.243
Link: CVE-2017-15805
Redhat
No data.