CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
97.0%
do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected.
Vendor | Product | Version | CPE |
---|---|---|---|
inglorion | muhttpd | * | cpe:2.3:a:inglorion:muhttpd:*:*:*:*:*:*:*:* |
arris | nvg443_firmware | - | cpe:2.3:o:arris:nvg443_firmware:-:*:*:*:*:*:*:* |
arris | nvg443 | - | cpe:2.3:h:arris:nvg443:-:*:*:*:*:*:*:* |
arris | nvg599_firmware | - | cpe:2.3:o:arris:nvg599_firmware:-:*:*:*:*:*:*:* |
arris | nvg599 | - | cpe:2.3:h:arris:nvg599:-:*:*:*:*:*:*:* |
arris | nvg589_firmware | - | cpe:2.3:o:arris:nvg589_firmware:-:*:*:*:*:*:*:* |
arris | nvg589 | - | cpe:2.3:h:arris:nvg589:-:*:*:*:*:*:*:* |
arris | nvg510_firmware | - | cpe:2.3:o:arris:nvg510_firmware:-:*:*:*:*:*:*:* |
arris | nvg510 | - | cpe:2.3:h:arris:nvg510:-:*:*:*:*:*:*:* |
arris | bgw210_firmware | - | cpe:2.3:o:arris:bgw210_firmware:-:*:*:*:*:*:*:* |
More