Page 2 of 6 results (0.002 seconds)
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1CVE-2021-23242
https://notcve.org/view.php?id=CVE-2021-23242
MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonstrated by the /../../conf/template/uhttpd.json URI. Los dispositivos MERCUSYS Mercury X18G versión 1.0.5, permiten un Salto de Directorio por medio de ../ en el servidor UPnP, como es demostrado por el archivo URI /../../conf/template/uhttpd.json • https://github.com/BATTZION/MY_REQUEST/blob/master/Mercury%20Router%20Upnp%20Server%20Directory%20Traversal.md https://www.mercurycom.com.cn/product-521-1.html https://www.mercusys.com/en • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •