1 results (0.005 seconds)
CVSS: 4.9EPSS: 0%CPEs: 2EXPL: 1
CVE-2022-24372
https://notcve.org/view.php?id=CVE-2022-24372
Linksys MR9600 devices before 2.0.5 allow attackers to read arbitrary files via a symbolic link to the root directory of a NAS SMB share. Los dispositivos Linksys MR9600 versiones anteriores a 2.0.5, permiten a atacantes leer archivos arbitrarios por medio de un enlace simbólico al directorio root de un recurso compartido NAS SMB • https://www.linksys.com/de/linksys-dual-band-mesh-wifi-6-router-mr9600/p/p-mr9600 https://www.linksys.com/mesh-routers/linksys-dual-band-mesh-wifi-6-router-mr9600/p/p-mr9600 https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-046.txt • CWE-59: Improper Link Resolution Before File Access ('Link Following') •