Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2017-11456
HistoryOct 03, 2022 - 4:23 p.m.

CVE-2017-11456

2022-10-0316:23:03
CWE-22
[email protected]
web.nvd.nist.gov
37
cve-2017-11456
geneko gwr
routers
directory traversal
vulnerability
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

84.9%

JSON

Geneko GWR routers allow directory traversal sequences starting with a /…/ substring, as demonstrated by unauthenticated read access to the configuration file.

Affected configurations

NVD
Node
genekogwr352_3g_router_firmwareMatch-
AND
genekogwr352_3g_routerMatch-
Node
genekogwr352wv_wide_voltage_3g_router_firmwareMatch-
AND
genekogwr352wv_wide_voltage_3g_routerMatch-
Node
genekogwr252_edge_router_firmwareMatch-
AND
genekogwr252_edge_routerMatch-
Node
genekogwr202_gprs_router_firmwareMatch-
AND
genekogwr202_gprs_routerMatch-

Related

prion 1
exploitpack 1
nvd 1
cvelist 1
exploitdb 1
openvas 1
prion
prion
Directory traversal
2017-07-19 07:29:00
exploitpack
exploitpack
Geneko Routers - Path Traversal
2017-07-16 00:00:00
nvd
nvd
CVE-2017-11456
2017-07-19 07:29:00
cvelist
cvelist
CVE-2017-11456
2022-10-03 16:23:03
exploitdb
exploitdb
Geneko Routers - Path Traversal
2017-07-16 00:00:00
openvas
openvas
Generic HTTP Directory Traversal (Web Root) - Active Check
2017-04-18 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.4 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

84.9%

JSON
Related for CVE-2017-11456
prion1exploitpack1nvd1cvelist1exploitdb1openvas1