Lucene search
K

4 matches found

Prion
Prion
added 2018/04/17 8:29 p.m.14 views

Design/Logic Flaw

On Appear TV XC5000 and XC5100 devices with firmware 3.26.217, it is possible to read OS files with a specially crafted HTTP request such as GET /../../../../../../../../../../../../etc/passwd to the web server fuzzd/0.1.1 running the Maintenance Center on port TCP/8088. This can lead to full...

7.8CVSS9.2AI score0.04282EPSS
Exploits2References1Affected Software2
NVD
NVD
added 2018/04/17 8:29 p.m.16 views

CVE-2018-7539

On Appear TV XC5000 and XC5100 devices with firmware 3.26.217, it is possible to read OS files with a specially crafted HTTP request such as GET /../../../../../../../../../../../../etc/passwd to the web server fuzzd/0.1.1 running the Maintenance Center on port TCP/8088. This can lead to full...

9.8CVSS9.3AI score0.04282EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/04/17 8:0 p.m.16 views

CVE-2018-7539

On Appear TV XC5000 and XC5100 devices with firmware 3.26.217, it is possible to read OS files with a specially crafted HTTP request such as GET /../../../../../../../../../../../../etc/passwd to the web server fuzzd/0.1.1 running the Maintenance Center on port TCP/8088. This can lead to full...

9.3AI score0.04282EPSS
Exploits2References1
CVE
CVE
added 2018/04/17 8:0 p.m.45 views

CVE-2018-7539

CVE-2018-7539 affects Appear TV XC5000 and XC5100 devices running firmware 3.26.217. The web server (fuzzd/0.1.1) in Maintenance Center on port 8088 is vulnerable to a directory-traversal attack using crafted URLs (e.g., GET /../../../../../../../../../../../../etc/passwd), allowing an attacker t...

9.8CVSS9.2AI score0.04282EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder