Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to FsTFtp file overwrite. An attacker can make an authenticated HTTP request to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Lantronix PremierWave 2050 路径遍历漏洞
Vulnerability Description
Lantronix PremierWave 2050是美国Lantronix公司的一个嵌入式企业 Wi-Fi 模块。用于提供可靠且始终在线的 5G Wi-Fi 连接。 Lantronix PremierWave 2050 8.9.0.0R4 存在安全漏洞,该漏洞源于软件重点Web Manager FsTFtp功能针对目录访问缺少有效的限制和过滤。一个特别设计的HTTP请求可能导致任意文件覆盖。导致FsTFtp文件泄露。攻击者可以通过发起经过身份验证的HTTP请求来触发该漏洞。
CVSS Information
N/A
Vulnerability Type
N/A