CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-5969

Multiple directory traversal vulnerabilities on the Huawei E585 device allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the PATH_INFO of an sdcard/ request or (2) modify arbitrary files via a .. (dot dot) in the req_page parameter to en/sms.cgi.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.6%

CVSS Severity

CVSS v2 Score 4.8

References

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198239.htm
http://www.kb.cert.org/vuls/id/871148
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198239.htm
http://www.kb.cert.org/vuls/id/871148

Products affected by CVE-2012-5969

Huawei » E585 » Version: N/A

cpe:2.3:h:huawei:e585:-
Huawei » E585u-82 » Version: N/A

cpe:2.3:h:huawei:e585u-82:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-5969

Products

Pricing

Contact Us