Inglorion

inglorion

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Muhttpd

muhttpd

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-31793 2Arris Inglorion 7Bgw210 Firmware Bgw320 FirmwareMuhttpd+4 more Nov 21, 2024 Aug 4, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips ov...Show more do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-31793

2Arris

Inglorion

7Bgw210 Firmware

Bgw320 FirmwareMuhttpd+4 more

Nov 21, 2024

Aug 4, 2022

N/A· v4

7.5 HIGH· v3

N/A· v2

do_request in request.c in muhttpd before 1.1.7 allows remote attackers to read arbitrary files by constructing a URL with a single character before a desired path on the filesystem. This occurs because the code skips over the first character when serving files. Arris NVG443, NVG599, NVG589, and NVG510 devices and Arris-derived BGW210 and BGW320 devices are affected.Show less