Lucene search
MitreCVELIST:CVE-2022-31793HistoryAug 04, 2022 - 9:55 p.m.
CVE-2022-31793
2022-08-0421:55:05
mitre
www.cve.org
do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected.
Related
nvd
nvd
CVE-2022-31793
2022-08-04 22:15:08
openvas
openvas
ARRIS Routers Information Disclosure Vulnerability (Jun 2022) - Active Check
2022-08-12 00:00:00
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00
githubexploit
githubexploit
Exploit for Path Traversal in Inglorion Muhttpd
2022-08-19 01:42:08
cert
cert
muhttpd versions 1.1.5 and earlier are vulnerable to path traversal
2022-08-04 00:00:00
prion
prion
Design/Logic Flaw
2022-08-04 22:15:00
cve
cve
CVE-2022-31793
2022-08-04 22:15:08
malwarebytes
malwarebytes
Millions of Arris routers are vulnerable to path traversal attacks
2022-08-01 17:31:40
Millions of Arris routers are vulnerable to path traversal attacks
2022-08-01 17:00:00