CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
95.9%
Directory traversal vulnerability in the TVT TD-2308SS-B DVR with firmware 3.2.0.P-3520A-00 and earlier allows remote attackers to read arbitrary files via … (dot dot) in the URI.
Vendor | Product | Version | CPE |
---|---|---|---|
tvt | dvr | td-2308ss-b | cpe:2.3:h:tvt:dvr:td-2308ss-b:-:*:*:*:*:*:* |
tvt | dvr_firmware | * | cpe:2.3:o:tvt:dvr_firmware:*:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.6.p-1.0.2.1-03 | cpe:2.3:o:tvt:dvr_firmware:3.1.6.p-1.0.2.1-03:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.7.b-1.0.2.1-00 | cpe:2.3:o:tvt:dvr_firmware:3.1.7.b-1.0.2.1-00:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.43.b | cpe:2.3:o:tvt:dvr_firmware:3.1.43.b:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.43.p | cpe:2.3:o:tvt:dvr_firmware:3.1.43.p:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.75.b-1.0.2.1-00 | cpe:2.3:o:tvt:dvr_firmware:3.1.75.b-1.0.2.1-00:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.81.b-1.0.2.1-00 | cpe:2.3:o:tvt:dvr_firmware:3.1.81.b-1.0.2.1-00:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.83.b-1.0.2.1-00 | cpe:2.3:o:tvt:dvr_firmware:3.1.83.b-1.0.2.1-00:*:*:*:*:*:*:* |
tvt | dvr_firmware | 3.1.83.p-1.0.4.2-03 | cpe:2.3:o:tvt:dvr_firmware:3.1.83.p-1.0.4.2-03:*:*:*:*:*:*:* |