CVE-2021-20121
4.0
Vector
CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 0.4 / Impact: 3.6
Source: NVD
Description
The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary files from the device by preparing and connecting a specially prepared USB drive to the device, and making a series of crafted requests to the device's web interface.
Affected (1)
Products: Telus: Prv65b444a S Ts Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.00.20 |
| Running on/with | Platform Versions |
|---|---|
Telus Prv65b444a S Ts | All versions |
References (2)
Source: vulnreport@tenable.com
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Timeline
No history available yet.