MidnightBSD

Advisories for geneko

CVE-2017-11456 MEDIUM

Geneko GWR routers allow directory traversal sequences starting with a /../ substring, as demonstrated by unauthenticated read access to the configuration file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
geneko gwr352wv_wide_voltage_3g_router_firmware -
geneko gwr252_edge_router_firmware -
geneko gwr202_gprs_router_firmware -
geneko gwr352_3g_router_firmware -