Vulnerability Details CVE-2021-20121
The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary files from the device by preparing and connecting a specially prepared USB drive to the device, and making a series of crafted requests to the device's web interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.2%
CVSS Severity
CVSS v3 Score 4.0
CVSS v2 Score 1.9
References
Products affected by CVE-2021-20121
-
cpe:2.3:h:telus:prv65b444a-s-ts:-
-
cpe:2.3:o:telus:prv65b444a-s-ts_firmware:3.00.20