Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2019-3415First vendor Publication2019-07-11
VendorCveLast vendor Modification2019-07-17

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:L/Au:S/C:P/I:N/A:N)
Cvss Base Score2.7Attack RangeAdjacent network
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score5.1AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

ZTE MW NR8000V2.4.4.03 and NR8000V2.4.4.04 are impacted by path traversal vulnerability. Due to path traversal,users can download any files.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3415

CWE : Common Weakness Enumeration

%idName
100 %CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware1
Os2

Sources (Detail)

SourceUrl
MISC http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011082

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-07-18 00:19:12
  • Multiple Updates
2019-07-12 05:18:32
  • First insertion