Details of VAR-202104-2000

ID

VAR-202104-2000

TITLE

Arbitrary file reading vulnerability exists in Samsung router WLAN AP

Trust: 0.6

sources: CNVD: CNVD-2021-18483

DESCRIPTION

Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of the end of 2008, 20 of Samsung's more than 30 companies have invested in China, including Samsung Electronics, Samsung SDI, Samsung SDS, and Samsung Electro-Mechanics. The Samsung router WLAN AP has an arbitrary file reading vulnerability. Attackers can use this vulnerability to read sensitive files on the router and obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-18483

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-18483

AFFECTED PRODUCTS

vendor:

samsung investment

model:

wlan ap

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-18483

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-18483
value:	LOW
Trust: 0.6

CNVD:	CNVD-2021-18483
severity:	LOW
baseScore:	2.1
vectorString:	AV:N/AC:H/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-18483

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-18483

Trust: 0.6

sources: CNVD: CNVD-2021-18483

SOURCES

db:

CNVD

id:

CNVD-2021-18483

LAST UPDATE DATE

2022-05-04T09:21:22.983000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-18483

date:

2021-03-18T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-18483

date:

2021-04-04T00:00:00