Sign-up

ID

VAR-201702-1103


TITLE

TM RG4332 Wireless Router Any File Disclosure Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2017-01062

DESCRIPTION

The RG4332 is a wireless router. The TMRG4332 wireless router's web page has an arbitrary file disclosure vulnerability that can be exploited by an attacker to obtain sensitive information because the program does not adequately verify the user-supplied input.

Trust: 0.6

sources: CNVD: CNVD-2017-01062

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-01062

AFFECTED PRODUCTS

vendor:tmmodel:rg4332scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2017-01062

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2017-01062
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2017-01062
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2017-01062

EXTERNAL IDS

db:EXPLOIT-DBid:41170

Trust: 0.6

db:EXPLOITDBid:41170

Trust: 0.6

db:CNVDid:CNVD-2017-01062

Trust: 0.6

sources: CNVD: CNVD-2017-01062

REFERENCES

url:https://www.exploit-db.com/exploits/41170/

Trust: 0.6

sources: CNVD: CNVD-2017-01062

SOURCES

db:CNVDid:CNVD-2017-01062

LAST UPDATE DATE

2022-05-17T01:47:54.812000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2017-01062date:2017-02-08T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2017-01062date:2017-02-08T00:00:00