Lucene search
MitreVULNRICHMENT:CVE-2023-46455HistoryDec 12, 2023 - 12:00 a.m.
CVE-2023-46455
2023-12-1200:00:00
mitre
github.com
2
gl-ar300m
firmware v4.3.7
path traversal
openvpn
file upload
In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality.
ADP Affected
[
{
"cpes": [
"cpe:2.3:h:gl.inet:AR300M:-:*:*:*:*:*:*:*"
],
"vendor": "gl.inet",
"product": "AR300M",
"versions": [
{
"status": "affected",
"version": "4.3.7"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2023-46455
2023-12-12 15:15:07
cvelist
cvelist
CVE-2023-46455
2023-12-12 00:00:00
nvd
nvd
CVE-2023-46455
2023-12-12 15:15:07
prion
prion
Path traversal
2023-12-12 15:15:00
packetstorm
packetstorm
GL.iNet AR300M 4.3.7 Arbitrary File Write
2024-03-04 00:00:00
exploitdb
exploitdb
GL.iNet AR300M v4.3.7 Arbitrary File Read - CVE-2023-46455 Exploit
2024-03-03 00:00:00
zdt
zdt
GL.iNet AR300M v4.3.7 Arbitrary File Read Exploit
2024-03-04 00:00:00
githubexploit
githubexploit
Exploit for OS Command Injection in Gl-Inet Gl-Ar300M Firmware
2023-12-08 01:45:16
AI Score
7.3
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-46455