CVE-2019-13406

2019-08-29T01:15:00
ID CVE-2019-13406
Type cve
Reporter cve@mitre.org
Modified 2020-08-24T17:37:00

Description

A broken access control vulnerability found in Advan VD-1 firmware versions up to 230. An attacker can send a POST request to cgibin/ApkUpload.cgi to install arbitrary APK without any authentication.