CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-17187

/var/WEB-GUI/cgi-bin/downloadfile.cgi on FiberHome HG2201T 1.00.M5007_JS_201804 devices allows pre-authentication Directory Traversal for reading arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://gist.github.com/ztz472947849/d62e7b6f4831b55c338ef22432eca06d
https://gist.github.com/ztz472947849/d62e7b6f4831b55c338ef22432eca06d

Products affected by CVE-2019-17187

Fiberhome » Hg2201t » Version: N/A

cpe:2.3:h:fiberhome:hg2201t:-
Fiberhome » Hg2201t Firmware » Version: 1.00.m5007_js_201804

cpe:2.3:o:fiberhome:hg2201t_firmware:1.00.m5007_js_201804

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-17187

Products

Pricing

Contact Us